last executing test programs:

7.900355443s ago: executing program 1 (id=1628):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c012500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000800000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
syz_mount_image$f2fs(&(0x7f0000000140), &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000000740)={[{@nodiscard}, {@whint_mode_fs}, {@acl}, {@alloc_mode_reuse}, {@inline_xattr}, {@disable_roll_forward}, {@background_gc_on}, {@nouser_xattr}, {@noflush_merge}, {@user_xattr}, {@fsync_mode_strict}, {@adaptive_mode}, {@jqfmt_vfsold}, {@noinline_dentry}]}, 0x1, 0x5514, &(0x7f00000079c0)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000001040)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000680)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}, {@metacopy_on}], [], 0x2c})
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000300)=ANY=[@ANYBLOB="180000000000000000000000000017009500000000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x27, '\x00', 0x0, 0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
write$P9_RVERSION(0xffffffffffffffff, 0x0, 0x15)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000f4ff850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_MPATH(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000240)={0x1c, r2, 0xb01, 0x0, 0x0, {{0x2d}, {@val={0x4, 0xe}, @void}}}, 0x1c}}, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
fstatfs(0xffffffffffffffff, &(0x7f0000000080)=""/18)
sendmsg$nl_xfrm(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="b80000001900010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000", @ANYRES32], 0xb8}}, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r5}, 0x10)
openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000000580)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

6.623551317s ago: executing program 1 (id=1637):
syz_mount_image$ext4(0x0, &(0x7f0000000440)='./file0\x00', 0x0, 0x0, 0x1, 0x0, 0x0)
mkdir(&(0x7f00000002c0)='./bus\x00', 0x0)
pipe2$9p(&(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = dup(r1)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x1, 0x8, 0x8}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000400000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
mount$9p_fd(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1])

6.001125868s ago: executing program 1 (id=1643):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f00000001c0)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x1fd2, 0x6007, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000009007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x37, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./bus\x00', 0x0, &(0x7f0000001080), 0x1, 0x4f7, &(0x7f0000000540)="$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")
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080))
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000015c0)=@base={0x15, 0x8, 0x1f}, 0x48)
r7 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x100002, 0x0)
write$cgroup_type(r7, &(0x7f0000000180), 0x4000)
getsockopt$inet_buf(r7, 0x0, 0x0, &(0x7f0000000180)=""/35, &(0x7f00000001c0)=0x23)
r8 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000400), 0x880, 0x0)
sendmsg$unix(r5, &(0x7f0000000c40)={&(0x7f0000000300)=@file={0x1, './bus\x00'}, 0x6e, &(0x7f0000000280)=[{&(0x7f0000001640)="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", 0x1000}, {&(0x7f0000000380)="6b70352a80c95948892254db11b7d81810fce86632fbc18659a9831a48537c3a37a1be4aac7f1e8512faa9033d8151795877bd849bd71f39ae875b4f67f41ae8b3", 0x41}, {&(0x7f0000000a40)="8525d3a061930f083a75f3e66bd981349fdfec914c7c3787c832b34a3ad77e69480303d91b3da8c508d87ba8ca3dd2ba3fcd8ad6f24eb79c8b60b0275b34355662ae23c4a0c75263096a7d414ca1874db690700542c9010da828ce52a8defcc6b4289fda80e5ed8cf7f0be4dff51fdd6982bead02a95805ad03709dd0c82ebca4fda9ab7c80ecc457a6573453250aae075062195302007c665d6577835708301", 0xa0}, {&(0x7f0000000b00)="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", 0xfd}], 0x4, &(0x7f0000000c00)=[@rights={{0x30, 0x1, 0x1, [r5, r6, r7, r3, r2, r5, r1, r8]}}], 0x30, 0x40}, 0x0)
socket$nl_audit(0x10, 0x3, 0x9)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000000c0)={r6, &(0x7f0000000000), &(0x7f0000000080)=@tcp, 0x2}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d, 0x0, 0x0, 0x0}, 0x90)
syz_usb_control_io$hid(r0, &(0x7f0000000a00)={0x24, 0x0, 0x0, &(0x7f0000000940)={0x0, 0x22, 0x5, {[@main=@item_4={0x3, 0x0, 0x8, "2c98d613"}]}}, 0x0}, 0x0)

5.748137939s ago: executing program 0 (id=1650):
write$cgroup_subtree(0xffffffffffffffff, 0x0, 0xfdef)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014fa0000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x141141, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r3)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
write$cgroup_subtree(r2, &(0x7f0000000440)=ANY=[@ANYBLOB="8fedcb5d07081175f37538e486dd6372ce22fdb904"], 0xfdef)

5.302707625s ago: executing program 0 (id=1654):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f00000001c0)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x1fd2, 0x6007, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000009007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x37, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./bus\x00', 0x0, &(0x7f0000001080), 0x1, 0x4f7, &(0x7f0000000540)="$eJzs3c9vI1cdAPDvTOJNmqZNCpUKCOhSCgtarZ1426jqqVxAqKqEqDhxSEPijaLYcRQ7pQkrNfkfkKjEAcGJMwckDpV64ojgBre9LAekBVagDRIHo/GPbHZjJ2HXsVX785FGM2/eeL7vrTXveb9J/AIYW1cj4iAirkTEexEx1z6ftLd4q7Vl1z24f3v16P7t1SQajXf/kTTrs3Nx4jWZZ9v3nI6I738n4kfJ6bi1vf3NlXK5tNMuF+qV7UJtb//GRmVlvbRe2ioWlxaXFt64+Xqxb319ufKbe9/eePsHH//uS3f/dPDNn2TNmm3XnexHP7W6njuOk5mMiLcvI9gQTLT7c2XYDeGJpBHxmYh4pfn8z8VE8928mC6PNQDwKdBozEVj7mQZABh1aTMHlqT5di5gNtI0n2/l8F6MmbRcrdWv36rubq21cmXzkUtvbZRLC+1c4Xzkkqy8+GF2/LBcjEfLNyPihYj46dQzzXJ+9eJ5BgCgv559bP7/91Rr/gcARtz0eRcsD6YdAMDgnDv/AwAjx/wPAOPH/A8A48f8DwDjx/wPAOPmTmf+nxh2SwCAgfjeO+9kW+Oo/f3Xa+/v7W5W37+xVqpt5iu7q/nV6s52fr1aXS+X8qvVynn3K1er24uvxe4HhXqpVi/U9vaXK9Xdrfpy83u9l0u5gfQKADjLCy9/8pckIg7efKa5xYm1HMzVMNrSYTcAGBo5fxhfvoUbxpf/4wPnreXZ81eEP3qCYI0Pn+BFQL9d+7z8P4wr+X8YX/L/ML7k/2F8NRpJrzX/0+NLAICRIscPDPTn/wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAiZpvb/IlymubzEc9FxHzkklsb5dJCRDwfEX+eyk1l5cWhthgAeHrp35L2+l/X5l6dfbz2SvKfqeY+In7883d/9sFKvb6zmJ3/5/H5+kft88VhtB8AOE9nnu7M4x0P7t9e7WyDbM+9b7UWF83iHrW3Vs1kTGa7P05HLiJm/pW0ym3Z55WJPsQ/OIyIz3Xrf9LMjcy3Vz59PH4W+7mBxk8fiZ8261r77N/is6fuPNUz5nlrvcK4+CQbf97q9vylcbW5n+66+PF0c4R6ep3x7+jU+Nd53qebY0238e/qRWO89vvv9qw7jPjCZLf4yXH8pEf8Vy8Y/84Xv/xKr7rGLyOuRff4J2MV6pXtQm1v/8ZGZWW9tF7aKhaXFpcW3rj5erHQzFEXOpnq0/7+5vXne/b/1xEzPeJPn9P/r53Z68bxAPyr/773w6/0in8Y8Y2vdn//XzwjfjYnfv3M+A+tzPy25/LdWfy1Vv8P/9/3//oF49/96/7aBS8FAAagtre/uVIul3b6epCLPt/wxEFySW12MOIH2efxp73PS+2UWddr/vCLj1/KKofe074cDHlgAi7dw4d+2C0BAAAAAAAAAAAAAAB6ufQ/J0qH3UMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABG2f8CAAD//zwQyy8=")
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080))
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000015c0)=@base={0x15, 0x8, 0x1f}, 0x48)
r7 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x100002, 0x0)
write$cgroup_type(r7, &(0x7f0000000180), 0x4000)
getsockopt$inet_buf(r7, 0x0, 0x0, &(0x7f0000000180)=""/35, &(0x7f00000001c0)=0x23)
r8 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000400), 0x880, 0x0)
sendmsg$unix(r5, &(0x7f0000000c40)={&(0x7f0000000300)=@file={0x1, './bus\x00'}, 0x6e, &(0x7f0000000280)=[{&(0x7f0000001640)="d4895bef8a97ff8a42674112ead165588c3ef44121ef20ba8d87fb24e358f38de791757b4c050963093dfee9a870956c2a8d682669e8971480df57e082d14fb0a4d725a26d8947c3db0783445dad9ae7d9d01053eaaefb93b76b532379090fc010dfebd3c7deafc356dbfdd0dad9d733a38d928368fd36c96b3c1154bf235af418d76e505d66cbcb3107c8eba84468e16c565faeeff9d0d2113a52c15e6a2e8bfec7ad3c770f2200906715704e1d716d8f583600c6223cb35e1605f95df2913cc745e7f0aef8f057838d0b004a8524c23c6c989a876b0b0b467adbf0b9f0f9ab62d4eb820ced09f0301e67a8d92bfa25706f80dbb0d60b3bd3ec4b6c82e54b338dbee5e205c1f54147e5c55bd9e67749a14420c417f256f494a6d65b56781e7820a4867d8d0b8358cb4603c671ab6f0a684eda60b4d7e625a2419540da8c61d0ec9f5d1a032f5f74df42599a534afbd0c2ac30b66f3afc87a1be541a2ecc4a7c2ca442de9b04de289861094c412a5b3726eb2daa219955e167442220f625352756ff23e7eb9d823f813793fd1b17452fd527e6f387dbf77483183a8ac2b9c03791ee83bb797d39c6ea14802ed5d5f65d6a732c433b989a88da580e8917236a0407fe73244b3527c06ea42d503202e659cadbbad038017f2ad04149613dde254fc3c72e214c10158dcd8d8d16c0abd5351afe72bb4bdb5bb48de0e73a50c1a229e76c55f0cb0b79df982ecb3b127b9de4882602bd788a71a507933d85e6d65ac87b281b7b1565fe2a7e02b91578f462a6eb48fb100c8185eae98750e80a61225acb7ded375cbabc7ef8362066527fc9ea72b6d9b940fecf52c8b5e8fcc358e0d05a1e9bbb4e6ec43eefe3d13feb9425d6bb21e563cdbbbe6caf9385eda434b843c89b6679af2bfd5f1f652dcb918b925fb5bf258dcf82b2031ed91815cf6bc7ea06faca547dcf9fd27b075c98385ca19a08a2416e6a7410f0313d37fa37e496073d5547f322eb5bf064d728e863ee560e929981dc2282fe92fc80f8ec738cf6ff31382c183604ccb032982cf1a5a6c091a523761d1a1ce326c7204eeb80ee37d4fcc73ae9cb6ddbeb1ba3513557c12f31811e6c1b1307bfd8f69e28282ea3b7652a7016b1b569e1f4321394880a0a99973513c3a3e7217044a559f3720572a0c57bd7cb07fe1571b60951302a14048793ca4c599e0d67f58f6a44a2a24c9db257a95798df7a364016378d11c2e23ba181147ae2b3ada56358e5c53e27b70a0d457a419f726f51138ab2b25af799133f2091a3fc1b5195509fa0b4a60858f35c7efe12d929bc2ef7914678736b60ca3b8a9637b0398e79574191d0228b6482d8cd3e4a80dc72489da8523b8a7824931cbcf36a00688d77ccc23587f81e0e9816ad0db6806c79a5c180ca8f7e1404b8bbcb26182cb3f32d7950c96d23eeaa66dd528029deef9a54e2ce3a484e23c1774ca248290b768266f6b544292d6858c2c6362ff543b8503bc82d7c23ee5a2b15fd8241e5404fb23593b1357b74d267305a5c5f63350fb4fcae3ed2326fb31edba7bac3ee9316e359caff96f08b80ebb72e6fff1f3c24a986478ebe367fb51de9823a7dab15116aebdb48aa7513f7983d041daa30f6f818accfe15b9edbb71c1ab1f88e7652abf3f43cfd11029b6558bb6e0a9d7fda58d50e1448d6c01bf98722ddcf34d8cb1a278b80bf472e7437c4409a95a932f3ffa752b84624620f0d1f8a5993ef23ad4e9830b54c3cd7282eaddcd7e45859e3af938ad6ec2862538aaaa0f8cb6c334450ef2ca8e05ae2a54d7fcca2c2c6f06ca9839300f45825055c4b4b00e5f4c1974864ab45140c71428608587f89f78f1d2d61de575b8d6c129156aed059d0b1d1653b4fcdc4ae741061e621142ebb6dfd76537ee6c64a626d197828c1ff80d681502c9723765e201ef0a155b0a481fed85e84be45e6a3e726e2421be8af8d6c3a502c695e3d2ce65fae58d54eacab935ccb7a4be00e5b3efd1e0232d539306dd4dd1989f1743a4e11e129bcdf2cd0597e50c165ab454e412cb06ae04f3957f61ee7bfca9e7f8c7862679739798727cdb8465068a2b84d58f0577366c1af0f8be5a1a40aab9e0c6389c7182ccfd3d58e961d9facba67ff97cec142ecfc698854743545e42a76a0ce6bab7d061ef6dd465c017ee6bdee58cd4e0518ba5639fa7629fa23dad491c47ab16ade24193f2f759e09910153975096ea6719241472f3f8f7aba42ea18ce2868b202a6c5bde0f511e4a0afccf98542d88141aa2ed3b47e721f1a4cccfaf336d51177f557a42285ec51ba40f665dbfac44e067edf7f8cd8d745ac57a748910d04f7ea4095118a4d0258b8bf497db611b408ac355589092ebe20e000efc168acf10654e5c8e359d667d88d9c8c7c3a7aa012fbcd076a31a636f61a98b644136d9c21867984f4f58931ac86e06595cb50c2e80511974f6323cdf22322cb04c2d6050899577836bdf0683fe4d73eb063ce71aa5e1c9255d4a27398911dba9cc6a9bfc277db1f79ae962ac4a435a2c0037bbc8f2cd5bd553cea960838dffa6051ccd051246b250ff6bed76d14ddb21f9f3d488d0f438b70963ddc4363a464e906f78c59844f1096ccbd7a88b357a1ac9ef361035c02238c81153a10d77b3dd297bf97a07e1bd64b32cb491a484a5c128d539c99c63803b6f03c0a72ac7e92372cf01324d38e677ef87ebbad6381cd502f52261a62d756222c9753560da59b8454f727c27abd88413fd8f62368de6d54778f7e9888d105b0f0b1eb6a920fd3f25e3c69ba3856d75f8a2f2c2f320ee7107295cbc05335047dcbc93e44731cd44854314ba8655a0c61f8a8f07596d123b0c8b2b7e52bb6bb1b4d9b3e39d873ee826544ec84362c1f6f5b6c877faefbd21f80e974b6607ccea4e90074a6b15e1d9b97999235f2c47e2fc2087efb1ec2fb8f35d0d2579780761608b508f1adbf8792d5c7d9ba1fdc40b8d97f9fa63e2f5ae4e273d3a0885405a92c0400cee6f60f1bb985ae18e3cdf18160e6d5420f334a135f7c9ff92c237f65f2a56aeb47f593686a286a3a8c17dc06ae5a1c9392c1b807408ba694c724d586ae77f965f04d9a8b88881428b1389537273e8c0405da9f10c73d88797c99913cbfb1e8106035d9508b4ca0f69de0852846dd13a5ab8865afed128a603917c654385174d876e947881d879db610e8568ecace11e703bc8a8a5a0849e7edcad30580a6d9e07686a29c5db9b91ccae4aa04e1a563cbd664e018fd1557e8514d86410592629218653fe57d1d0b0b3fe561c43e2abcfb9726e3e8ec6a7197479a13d1539ffa922dd9c7ce654ad96baf0fb7341660e4fdc8ec7feb61577237c6a232155b4d1830c3f8bc219e92465b8b97ddb43f46d8a50489c612877614cafea1232e7bf6ff1e1209a3abe03fddc45451337624da027fc90a1522a5a2b5697e079862348a9d804807babefecce53ad3d7cba2441900bccda1fa397ee99b703ad4b5164c615f538f33bd36d06ede068542d4d3f7f8dc205abc4856a427e6773ea1978554415fb0143dcf82aff0475dfe9086ced2e40ed85a344976da4391f08d671a73262e142f8c9f40ef7181dab4a5661c12de86ca32bee3db1a2bcc5241edc0a59ab6dd0005cbaa573e5556cf903f28ad107031b194910f85b28b38ed5e3034633d8d6c7f20186b7f381a2812e6f143fc0c8a44059173518a80711d2005125a2b04cf549acd61b76ee5305debb853e6019d81e2ccc72c96184d0b1358a6d85a4cc6c4a3fd99f312156dbc29ac079f6cc0e536eaf20dd11d88d98cb2876544da773c3b3dcba03f40aceafa8f5cc545bec061e1d420dbafa2ec9d32d27d6d8ed970e7b644e7e7a2ccbda3cf2d028f3e2c66160d21b35e96d9571ca360580a2a04b8d78962e41425fe24a28f1e52728f0aa835df70e4e281cc45001e56850e82c4272546cc4a0f15f4cfc1fefe7c532912ae31a1a2322a0a1bb0081d09fb574e36a2cbc4b6973a6888446666ccc2e02272e8ec77ca72bb8e215a3450dfc6f8a8058cd571e50a388de887a33a18ef0e4686c33dfb9f4372ec92f5d940541000b1d4498cb354248c2825ede84a2a29fae9cc6f1caa3320712251d06bfa98363d05ea27172ff474e53c6c8b856a161e889c4a1e7af171af94b0e70b01d82dc0f391a34e2485318d2fe7a8dbee14662e36750c1e9dad202b949cbf3c0e427cc7237777d41bbefa04f4d46bc48b2f792df9056c9db03e8ef9ec6178ef4519d3f80120515ae21cfc4fc5683a75374c8124bc6b6d7adda18bd2bd2e3b10da553487d07a177cdcc07cf12cea3c7b43dcf38158d64e767b4e478917a1003e3ebb9a6ea737ee38fa930105b15db7528076fb00709a231a9ac490e6f1f6b0eef88e5d33f181ba084d3dc78a86f95db3fa34983db5992ec45fc970bd646cc75f61e6dc097c755109e95c1fced0022d82775b2b08b566cde728038d96e37ff34009b4ac6c17cb9f5715e9ba38ec1b798025c2ca286565a2fa9758e19915f4b21f06ce47645ebcff779bd760a1b7f0201f1539eb14b2479dbfc8689ad3007172394d0b446b40909000edf247ed8d4bfb946c5c2e252b098915660e8bc1318aeca8cfae78100643422352542c18fd0e86e69b7ec5eb877de14681dd1f0a20e2f113f1f9d3e67996e299a61b7d3c120dcb261b69b209cd9f3a796eb0e148a0dfd6d9ae164a61103257262cc0362f2bd46eb3fd6bce199cd39df4362c566f9c8aa4d405f0cf053a7552fa940db8b51ce02b536e06e0cfc30c39efd7be12ba1c433e6dd240c9a6b089c0540b2c138fc3692c995e50532f328f1382bb9b8e39d8ebc2359f71467256fc0999abdeaac80f7bb459a6d6779c8e9aa48bcee05c65c71d65ade10589c2d07ae2887c8c531a170e7c55592fbd55aae5703d632b2ad39e5af6096f7949ebc686911a632c9d16fb265f5a7367353f550cffacab1112b90fef2c579ef4925b3b0530a0355a7360fdae167202e5bcf0bc4051cd14d403c0d9d40988beb93fb97d2acc15cbc35a3ef1c9bedf3858180a5b75a57046c63701c8c139d9688820d5814563562868c5e61d1c946209274443667cd01754bbba2290a4b3b3cdd153df39fe2e7011326c2bc7d6ffec1087158b6097f030ac2fd065d34800f5b8a28eb139da8906b054bf4f9458ce824ad5d2127d0ef03ba252a52b20d3976b44f8bf0a5710c80e25bca14f87904e42ac9a71c71c7a06a45e4cc59cbeb05abce7f40a791e3892f1b9966ad35f24c16fd289433f5c0f3f3241ed39c786de6dee4c252939cb0bef698972f9fae5cbdd6d549a820f52847db92df0c38096ee66691f2fd35d0ae46415866559fec4896f421a592cf7c0de0fd7f926f39955afbd2d305a4a0bbdbbb7eda48575cbc109f32ec2a9ddf2011ada948e56965aa06402fbea7cc358aafb8683628eb3c45dc455a63596ad4bef0a5ad954b429f77109c5640081475a86b8a0226b80c4b731178b4f2293bcdb4d2b34b05d204c9d0eb8eaf1d5e47d9f124331a64c196be263ae7e1c6f6aac5c407453e7c7a19d601f7b227ca89536e254d4251cfbe871d0ff9f8794c713025bddf5150e3a8c1c3dca3c6444437b9fbc3c6f74aaa21701d28cea13c8b3c8c3cd7558287abfcc4087269d8293b0ac2003b91c534a6e556d0d20b367bc3eaf446bc8de9e9b0517acc2e6b7f17cde9b0cd8fb6c1e2997d8b8c2fc5b481d3f86bc61e7bf6032f5d2cb110c3a375057a41bfd72a3667c545c310aa7d205064cfdaff4f12de91b18c", 0x1000}, {&(0x7f0000000380)="6b70352a80c95948892254db11b7d81810fce86632fbc18659a9831a48537c3a37a1be4aac7f1e8512faa9033d8151795877bd849bd71f39ae875b4f67f41ae8b3", 0x41}, {&(0x7f0000000a40)="8525d3a061930f083a75f3e66bd981349fdfec914c7c3787c832b34a3ad77e69480303d91b3da8c508d87ba8ca3dd2ba3fcd8ad6f24eb79c8b60b0275b34355662ae23c4a0c75263096a7d414ca1874db690700542c9010da828ce52a8defcc6b4289fda80e5ed8cf7f0be4dff51fdd6982bead02a95805ad03709dd0c82ebca4fda9ab7c80ecc457a6573453250aae075062195302007c665d6577835708301", 0xa0}, {&(0x7f0000000b00)="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", 0xfd}], 0x4, &(0x7f0000000c00)=[@rights={{0x30, 0x1, 0x1, [r5, r6, r7, r3, r2, r5, r1, r8]}}], 0x30, 0x40}, 0x0)
socket$nl_audit(0x10, 0x3, 0x9)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000000c0)={r6, &(0x7f0000000000), &(0x7f0000000080)=@tcp, 0x2}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x10)
syz_usb_control_io$hid(r0, &(0x7f0000000a00)={0x24, 0x0, 0x0, &(0x7f0000000940)={0x0, 0x22, 0x5, {[@main=@item_4={0x3, 0x0, 0x8, "2c98d613"}]}}, 0x0}, 0x0)

5.302470905s ago: executing program 3 (id=1655):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x2000000, &(0x7f00000001c0), 0x1, 0x4f7, &(0x7f0000000540)="$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")
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f00000003c0)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mkdir(&(0x7f0000000080)='./file0\x00', 0x0)
pipe2$9p(&(0x7f00000001c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff017f000e0800395032303030"], 0x15)
r1 = dup(r0)
close(0xffffffffffffffff)
write$FUSE_GETXATTR(r1, &(0x7f00000000c0)={0x18}, 0x18)
chown(&(0x7f0000000040)='./file0\x00', 0x0, 0xffffffffffffffff)

5.038653377s ago: executing program 3 (id=1656):
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
rt_sigaction(0x19, &(0x7f0000000000)={0xfffffffffffffffc, 0x44000006, 0x0}, 0x0, 0x8, &(0x7f0000000440))
memfd_create(&(0x7f00000006c0)='\x00\xac=\x9d\xd2\xdb\xe6\xbf\xb4\xf2\xed\x04\x00\x00\x00\xd4N\x12\x9b\x1f\t\xd1Z+\x86T\x16\xf8\x01\x00\x00\x00\x9f+\x8d!\x0fG\xab\xc2\xdc\xa3\xb3\xae8\x9f9?\xefo\xa4k\x01\xb2>\xa1\x9c\x86xm\xe6\x9bZ4\x91\x1a\xdb\xdd\x89\xb9\xc0LF;\xd6\x84\x195\x06\x00\x00\x00~\xf3S\x12\"p^\xc1jP\x8a\xc6[\xbd\xe7q]\xdd\r\x1aZS\x01*\x1b\xfd\xbcMA\xdcq\xa1\x00\xb3\xf9\x91r\x7f\xdc\xf1\xc3G,\xdb\xccS\x15\x95b\x17\xab\xe4?\x96\x95\xa4kP\x99YO\xb8V\xd5p\x90X\xaaf', 0x0)
mount$incfs(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000180), 0x0, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x42, 0x0)
pwritev2(r2, &(0x7f00000000c0)=[{&(0x7f0000000200)="df", 0x1}], 0x1, 0x800001, 0x0, 0x0)

4.894860399s ago: executing program 3 (id=1657):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x8, 0x5}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000090000007b8af8ff00000000bfa200000000000007020000d8ffffffb703000008000000b70400000000000085000000030000009500000000000000989a41e084261925b71305a5f3c0e6054d31541490b93b39bba41e4758dc613b0104088ed0a026a6f6ff9cba07d5d4c77334bc976234f5fc4f41e54ee6723475d8"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000000), &(0x7f0000000080)}, 0x20)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
r3 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r3, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f00000001c0)='./file0\x00', 0x0, 0x20, &(0x7f0000000000)=ANY=[@ANYBLOB='rootcontext=u'])
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=@ipv6_newrule={0x54, 0x20, 0x103, 0x0, 0x0, {0xa, 0x20, 0x20, 0x0, 0x0, 0x0, 0x0, 0x2}, [@FRA_SRC={0x14, 0x2, @private1}, @FIB_RULE_POLICY=@FRA_GOTO={0x8}, @FRA_DST={0x14, 0x1, @empty}, @FIB_RULE_POLICY=@FRA_SUPPRESS_IFGROUP={0x8}]}, 0x54}}, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x2}, 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r8}, 0x10)
mkdir(&(0x7f0000000540)='./file0\x00', 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB='\x00\x00'])
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)

3.825120456s ago: executing program 3 (id=1662):
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="8fcacb7907051175f37538e486dd6300800701082c00db5b686158bbcfe8875a060300000023000000000000000000000000ac1414aa"], 0xfdef)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x141141, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
write$cgroup_subtree(r0, &(0x7f0000000440)=ANY=[@ANYBLOB="8fedcb5d07081175f37538e486dd6372ce22fdb904"], 0xfdef)

3.586250186s ago: executing program 1 (id=1644):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x20081e, &(0x7f0000000040)={[{@nodelalloc}, {@grpid}, {@auto_da_alloc}]}, 0x1, 0x4ef, &(0x7f00000003c0)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000c00)={0x15, 0x65, 0xffff, 0x6, 0x8, '9P2000.u'}, 0x15)
read$FUSE(0xffffffffffffffff, &(0x7f0000006380)={0x2020, 0x0, <r0=>0x0}, 0x2020)
write$FUSE_INIT(0xffffffffffffffff, &(0x7f0000000100)={0x50, 0x0, r0, {0x7, 0x1f, 0x0, 0x61f285}}, 0x50)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x0)
ioctl$VT_OPENQRY(r1, 0x80086601, 0x0)

3.53712905s ago: executing program 3 (id=1665):
syz_usb_connect(0x0, 0x2d, &(0x7f0000000800)=ANY=[@ANYBLOB="12010000256930108205050088000002030109021b000100000000090402000191baf20509050b02"], 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
sendmsg$inet(r1, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r3, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000240)={<r4=>0xffffffffffffffff})
close(r4)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x7, 0x10001, 0x8, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
close(r4)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x100, 0x9, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r6, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
read$FUSE(r3, &(0x7f00000077c0)={0x2020}, 0x2020)
syz_fuse_handle_req(r3, &(0x7f00000042c0)="000000000000000000000000000000000000000000000000000000000000000090c400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000542d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ea8286a2fba523440000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000633956a1000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000007d6ab715107fa1820000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f6ffffffffffffff0000000000000e000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e1ffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f4000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000286071480000000000b13bc1e6d970884f00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000060000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f3ffffffffffffff00", 0x2000, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000080)='mm_page_alloc\x00'}, 0x10)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r7}, 0x10)

3.306853259s ago: executing program 1 (id=1667):
openat$ppp(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=<r0=>0xffffffffffffffff, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], 0x0, 0xfffffffb, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xfffffd43)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x7, 0x10001, 0x8, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x12, 0x200000000000007d, &(0x7f0000000300)=ANY=[@ANYRESDEC=r0, @ANYRES32=r1], 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_generate\x00', r2}, 0x10)
timer_create(0x2, 0x0, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f0000000380)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
syz_usb_connect(0x0, 0x2d, 0x0, 0x0)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
r3 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r3, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x43}}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r4, 0x89f3, &(0x7f00000000c0)={'syztnl1\x00', &(0x7f0000000100)={'ip6tnl0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @loopback={0xff00000000000000}}})
r5 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r5, 0x10f, 0x87, &(0x7f0000000180)={0x43, 0x4}, 0x10)
bind$tipc(r3, &(0x7f0000000080)=@nameseq={0x1e, 0x1, 0x0, {0x43, 0x5, 0x400}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, &(0x7f0000000040)={0x10000043}, 0x10)
bind$tipc(r5, 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0)
recvmsg$unix(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_usb_connect$cdc_ncm(0x2, 0xc2, &(0x7f0000000000)={{0x12, 0x1, 0x201, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0xb0, 0x2, 0x1, 0xfb, 0xc0, 0x3, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x6, 0x24, 0x6, 0x0, 0x1, "e4"}, {0x5, 0x24, 0x0, 0xe09d}, {0xd, 0x24, 0xf, 0x1, 0x6964, 0x6, 0x8, 0x7f}, {0x6, 0x24, 0x1a, 0x8}, [@mbim={0xc, 0x24, 0x1b, 0x0, 0x4, 0x1e, 0x0, 0x0, 0x6}, @mdlm={0x15, 0x24, 0x12, 0x3}, @country_functional={0xa, 0x24, 0x7, 0x0, 0x194, [0x58, 0x7]}, @mdlm={0x15, 0x24, 0x12, 0x45b5}, @network_terminal={0x7, 0x24, 0xa, 0xa, 0x6, 0xff, 0xb}, @mbim={0xc, 0x24, 0x1b, 0x401, 0x1, 0x8, 0x8, 0x1, 0x3}]}, {{0x9, 0x5, 0x81, 0x3, 0x10, 0x0, 0x8, 0x2}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x8, 0xfe, 0xb, 0x8}}, {{0x9, 0x5, 0x3, 0x2, 0x3ff, 0xc, 0xb, 0x5}}}}}}}]}}, &(0x7f00000001c0)={0xa, &(0x7f0000000100)={0xa, 0x6, 0x250, 0x2, 0x10, 0x5, 0x8, 0x10}, 0x5, &(0x7f0000000140)=ANY=[@ANYBLOB='\x00\x00\x00\x00\x00'], 0x1, [{0x4, &(0x7f0000000180)=@lang_id={0x4, 0x3, 0x2009}}]})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)

3.05684049s ago: executing program 4 (id=1669):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000060000000000000000000000850000"], 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0xfff, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000002000000000000000000018190000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000024"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='hrtimer_init\x00', r1}, 0x10)
socketpair(0xa, 0x1, 0x0, &(0x7f0000000000))

3.010929173s ago: executing program 4 (id=1670):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r4}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a07, 0x1700)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)

1.811300192s ago: executing program 4 (id=1673):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x0, 0x7fe2, 0x1}, 0x48)
openat$cgroup_type(0xffffffffffffffff, &(0x7f00000004c0), 0x2, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000004c0), &(0x7f0000000380), 0x9, r1}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r3)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
write$cgroup_subtree(r0, &(0x7f0000000440)=ANY=[], 0xfdef)

1.643745485s ago: executing program 4 (id=1674):
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x0, 0x4, 0x0, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000140)=ANY=[@ANYBLOB="180000000000000000000000000000008500000023000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000010700000000000000000000181100", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x0, 0x4, 0x0, 0x5}, 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
mkdir(&(0x7f0000000fc0)='./file0\x00', 0x107)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000001000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$inet(r0, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000001400)=[{&(0x7f0000000080)="3bfdd75fa5717852d59a9367444a2130e72cd4dabc8854532cca0c32a5b9f844a4610c75256509e3d3b76b15026d93e6dee896115e9364066aa3d14e33ef732b4681335c576902153114bdb9c74b538a71115fb1d1a63d1b04129661b29aab89d0be999a6b7c9bea755adedbf305a79f70b71d3d4c98577b49db4963ce89b0def5e840f459659cb6f86d56b069a5de11d601d348ff88ca6e5e2cfe40176880b33e9e8dbc32ba2e6a99b1b50276dc4f06166000d7069a3cc76f", 0xb9}, {&(0x7f0000000180)="892950e2405ee8629d9384a91c16d1706a3e61f305119f95cac0f1927f4c205b971eb41147cb1f86883d6910e68ac3996551800b3ec64b77f8444b18345a2c8b178eeeba0cde7319a5a46bfe7f5770e019efd9d52069edcced33a758c4e657f3a792dc193a1911b4e82ea800ad7afe03c851a8", 0x73}, {&(0x7f0000000200)="a68cde0d56b170df7710b54f17d9a39c4f98f3547190", 0x20000216}, {&(0x7f0000000240)="45e04400f2b383517a08c397dd0a76e67ecfc8e74573c24dedd3a48fb62418c1412fdcd15e888cb0f5d02e77bfecefda6b064c0bb2b66a9a522e63873dde02330510255eec7dfa1af708cdab59fb71eca786a359a2c3b0cbad35144ec5b069c53f90e43339845dc7fd140c55b0149ab38eb27c140f374bcc2c95b0b121d1a9302f3a01b888243b3fc0d46f0de0", 0x8d}, {&(0x7f0000000300)="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", 0xcb3}], 0x5, &(0x7f0000001480)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @private, @multicast1}}}], 0x20}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x1e, 0x4, &(0x7f0000000040)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x2, 0x1, 0xf}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x80)
recvmsg$unix(r1, &(0x7f0000001140)={0x0, 0x1200, &(0x7f0000001040)=[{&(0x7f00000015c0)=""/4096, 0x7ffff000}], 0x1, 0x0, 0x12000000}, 0x40000100)
syz_clone(0x6a300000, 0x0, 0x0, 0x0, 0x0, 0x0)

1.478625509s ago: executing program 0 (id=1675):
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x10)
sendmsg$TIPC_NL_LINK_SET(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)={0x18, 0x0, 0x601, 0x0, 0x0, {}, [@TIPC_NLA_LINK={0x4}]}, 0x18}}, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
rt_sigaction(0x19, &(0x7f0000000000)={0xfffffffffffffffc, 0x44000006, 0x0}, 0x0, 0x8, &(0x7f0000000440))
r2 = memfd_create(&(0x7f00000006c0)='\x00\xac=\x9d\xd2\xdb\xe6\xbf\xb4\xf2\xed\x04\x00\x00\x00\xd4N\x12\x9b\x1f\t\xd1Z+\x86T\x16\xf8\x01\x00\x00\x00\x9f+\x8d!\x0fG\xab\xc2\xdc\xa3\xb3\xae8\x9f9?\xefo\xa4k\x01\xb2>\xa1\x9c\x86xm\xe6\x9bZ4\x91\x1a\xdb\xdd\x89\xb9\xc0LF;\xd6\x84\x195\x06\x00\x00\x00~\xf3S\x12\"p^\xc1jP\x8a\xc6[\xbd\xe7q]\xdd\r\x1aZS\x01*\x1b\xfd\xbcMA\xdcq\xa1\x00\xb3\xf9\x91r\x7f\xdc\xf1\xc3G,\xdb\xccS\x15\x95b\x17\xab\xe4?\x96\x95\xa4kP\x99YO\xb8V\xd5p\x90X\xaaf', 0x0)
fallocate(r2, 0x0, 0x400000000000000, 0x7)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x800714, &(0x7f00000004c0)={[{@dioread_nolock}, {@journal_dev={'journal_dev', 0x3d, 0x7}}, {@quota}, {@mblk_io_submit}, {@errors_continue}, {@errors_continue}, {@data_err_ignore}, {@delalloc}, {@jqfmt_vfsold}, {@norecovery}, {@errors_continue}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x1}}]}, 0xee, 0x442, &(0x7f0000000d00)="$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")
r3 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x42, 0x0)
pwritev2(r3, &(0x7f00000000c0)=[{&(0x7f0000000200)="df", 0x1}], 0x1, 0x800001, 0x0, 0x0)

1.204544871s ago: executing program 2 (id=1677):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x20081e, &(0x7f0000000040)={[{@nodelalloc}, {@grpid}, {@auto_da_alloc}]}, 0x1, 0x4ef, &(0x7f00000003c0)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000c00)={0x15, 0x65, 0xffff, 0x6, 0x8, '9P2000.u'}, 0x15)
read$FUSE(0xffffffffffffffff, &(0x7f0000006380)={0x2020, 0x0, <r0=>0x0}, 0x2020)
write$FUSE_INIT(0xffffffffffffffff, &(0x7f0000000100)={0x50, 0x0, r0, {0x7, 0x1f, 0x0, 0x61f285}}, 0x50)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x0)
ioctl$VT_OPENQRY(r1, 0x80086601, 0x0)

1.175624504s ago: executing program 0 (id=1678):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x2000000, &(0x7f00000001c0), 0x1, 0x4f7, &(0x7f0000000540)="$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")
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f00000003c0)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mkdir(&(0x7f0000000080)='./file0\x00', 0x0)
pipe2$9p(&(0x7f00000001c0), 0x0)
close(0xffffffffffffffff)
write$FUSE_GETXATTR(0xffffffffffffffff, &(0x7f00000000c0)={0x18}, 0x18)
chown(&(0x7f0000000040)='./file0\x00', 0x0, 0xffffffffffffffff)

1.118911239s ago: executing program 2 (id=1679):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c012500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000800000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='fib_table_lookup\x00', r0}, 0x10)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r1, 0x18000000000002a0, 0xe0c, 0xffe0, &(0x7f0000000640)="b9ff03076844268cb89e14f088a847fe884700121100632f77fbac14141dac1414", 0x0, 0x71, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x48)

1.108448069s ago: executing program 2 (id=1680):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000060000000000000000000000850000"], 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0xfff, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000002000000000000000000018190000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000024"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='hrtimer_init\x00', r1}, 0x10)
socketpair(0xa, 0x1, 0x0, &(0x7f0000000000))

1.069137352s ago: executing program 2 (id=1681):
syz_mount_image$f2fs(&(0x7f0000000040), &(0x7f00000000c0)='./file3\x00', 0x0, &(0x7f0000005700)=ANY=[@ANYBLOB="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"], 0x1, 0x550f, &(0x7f00000001c0)="$eJzs3M9rI+UbAPAn7XZ/f/dbxIO3HViEFjZh0x+L3qru4g/sUlY9eNI0SUN2k0xp0rT25MGjePA/EQVPHv0bPHj2Jh4Ub0IlM1PdqgtC08RtPx+YPPO+efPM84Zl4ZkpCeDcmk9+/bkUN+JKRMxGxPWI7LxUHJm1PLwQETcjYuaJo1TM/zFxMSKuRsSNUfI8Z6l46/Pbw1urP731yzffXbpw7Yuvv5/eroFpezEiutv5+V43j2krj4+K+dqwncXuyrCI+Rvdx8U4zeNeczPLsFc7WlfL4nIrX59u7/ZHcatTq49iq72VzW/38gv2h62jPNkHHtV2snGjuZnFdj/NYusgr2v/IP+/7aA/yPM0inwfZeljMDiK+Xxzv5nvZ/txFuu9QTGf500bzf1RHBaxuFzU004jq2PzJN/0f9vb7d7ufjJs7vTbaS9ZrVRfqlTvlqs7aaM5aK6Ua93G3ZVkodUZLSsPmrXuWitNW51mpZ52F5OFVr1erlaThXvNzXatl1SrleXKnfLqYnF2O3n9wXtJp5EsjOKr7d7uoN3pJ1vpTpJ/YjFZqiy/vJjcqibvrG8kGw/v31/feDfuvf/glfU3XysW/a2sZGHpztJSuXqnvFRdPIP7/+Ap+/+kKHqM+4cTKU27AIBnj/4fmIbT6/93HsbhYTZ/mv1/6P/HYlz97+Ek+t/z3v+fwv7hRPT/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADn1g9zX76Rnczn42vF/P+KqeeKcSkiZiLi8B/MxsVjOWeLPHNPWT/3lxq+LUWWYXSNS8VxNSLWiuO3/5/2twAAAABn11cf3/ws79bzl/lpF8Qk5TdtZq5/OKZ8pYiYm/9xTNlmRi/PjylZ9u/7QuyPKVt2A+vymJLlt9wujCvbvzJ7LFx+IpTyMDPRcgAAgIk43glMtgsBAABgkj6ddgFMRymOHmUePQvO/vL+zweCV46NAAAAgGdQadoFAAAAAKcu6//9/h8AAACcbfnv/wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/M7O/dyoDURxAH62cSD/FBTlnla4QRkpIcccIwpIE5RAWkgD1EBuKSGCFR4vWlbsaiWP7d3V90kwjAU/ZhA+zBtpAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOjT33q7+v3z66+uOYdjN3lmAwAAAFyzr7er5sU89d+31z+2lz63/SIiyoi4tnav4s1FZtXm1A+8v743hj8RTcLpO6bt411ELKqIRUT8/9T3rwAAAACv1269WabVenqajz0ghpSKNuWHb5nyioio5/8ypZWnvC+Zwpr/9yR+ZEprClizTGGp5DbJlfYkze1+rtrN7jRFasrHP59t7gAAwICqi2bYVQgAAABD+j72ABhHEbdbmeetwGlq2u29txc9AAAA4AUqxh4AAAAA0Ltm/f+sz/8L5/8BAABAV+n8PwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPq0r7er3Xqz7JpzOHaTZzYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA3LA/7ygQAmEQBnvXdyZz/8NKg6amJlUgfPyNwQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAb373l/8TU+NMMvfaWHoeSdZOja1TY+/cOPrD+Po1AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAxf68pEAIBEEUzBn/O+n7H1YS9AwiREDDo4paNAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMAX/e6X/xNT40wyd9pYOh5J1q4aW1eNvQeNowfj7d8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAxc79u0ZSxQEAfzOzs/FOxTXKFhFRsNDGy+2dd14nFkqw8E8QQm7vjLcqnim84xDS2Enqa0RLEUGJ3f0PVyeQJnYptohgYbUyszPJ5Ae4/prZZD8fePO+Owzzvm8WQr7zXgIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKXh24dxkh064zguzm3tP1jJ+u1jfebRxs5C1rI4qjPps+HF6oeo21wiAAAAzI6krO9DCLvp5lLWx528/k/La7Ka/9unx3FZzx+v+8u+rP2z9svPe88fDNQZj5Pd9NbqoH/5ZCqt/2+W0+2Zv7yilT/5/N1Lkn8h8Xvrzw3T/HlGXz9+/E47D+fqyBYA+CculX0RlL8PZX2vycQAmBmtSuFd1v9Jp9mcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOowXA9PlnEUQlhoHcaZ7f0HK6f1jzZ2Fsp2/eHDjeo9s1ukIYRbq4P+5RrnMu0+v3f/zvJg0L9bf/BSCKGp0d8qpn/ngwkuDqGR5yP4j4K4+LKnJZ+zETT4QwkAgHMpLVpW1++mm0vZuWg+hNF3R+v/VytxmLD+3/vw+lZ1rGr936tthg2am+yyxbU/RqPRvfuvr368fLt/u//JG1d6b/au3rh27cZi/q5k0RsTAAAA/p120ar1fzx/cv3/YiUOE9b/n33T+7I6VjJr9f+EDhf9ms4EAABgtj378u+/Raecj9rt8MXy2trd3vh48PnK+NhAqn/bXNGq9X8y33RWAAAAQB2G69GR9f+blThMuP7/1Pcv/Fi9ZxJCuFCs/19a+XRws77pTLU6/py46TkCAADQrAtFq67/p/n+//hgy0McQnjtlXFc/BvAier/5N2vfqiOVd3/f7W+KU6luDt+HnnfDaHVbTojAAAAzrMnipYV+7+mm0sf/XTx/bb9/wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB1+zMAAP//H1NCtw==")
syz_mount_image$fuse(0x0, &(0x7f0000000400)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000000180)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="000000000087fb00b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
socket$tipc(0x1e, 0x5, 0x0)
mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c})

919.054665ms ago: executing program 0 (id=1682):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b703000000000000850000002d0000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000240)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg$tipc(r2, &(0x7f0000003280)={0x0, 0x0, 0x0}, 0x0)
setsockopt$sock_attach_bpf(r1, 0x1, 0x21, &(0x7f0000000040), 0x4)
sendmsg$tipc(r2, &(0x7f0000001000)={0x0, 0x0, 0x0}, 0x0)
recvmsg(r1, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000880)=[{&(0x7f0000000600)=""/203, 0xcb}], 0x1, &(0x7f00000032c0)=""/4096, 0x1000}, 0x0)
sendmsg$tipc(r1, &(0x7f0000000b40)={0x0, 0x0, 0x0}, 0x0)

798.951655ms ago: executing program 0 (id=1683):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000000)={0xc, <r1=>0x0}, 0x8)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x11, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="180100001700000000000000a54b0000850000007500000095"], &(0x7f0000000080)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff55, r1, 0x0}, 0x90)
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x2000082, &(0x7f0000001fc0)={[{@numtail}, {@uni_xlateno}, {@iocharset={'iocharset', 0x3d, 'cp852'}}, {@uni_xlate}, {@fat=@codepage={'codepage', 0x3d, '862'}}, {@iocharset={'iocharset', 0x3d, 'cp775'}}, {@fat=@nocase}, {@shortname_winnt}, {@numtail}, {@shortname_win95}, {@iocharset={'iocharset', 0x3d, 'macgreek'}}, {@uni_xlate}, {@shortname_mixed}, {@fat=@uid}, {@shortname_mixed}]}, 0x25, 0x353, &(0x7f0000006280)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='hugetlb.2MB.rsvd.usage_in_bytes\x00', 0x275a, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000000c0)='signal_generate\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x11, 0x4, &(0x7f0000000240)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000000c0)='signal_generate\x00', r3}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_generate\x00', r0}, 0x10)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)
r4 = syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f0000000480)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5c, 0x2, 0x1, 0x0, 0x0, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5}, {0xd}, {0x6}}, {{0x9, 0x5, 0x81, 0x3, 0x200}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x200}}, {{0x9, 0x5, 0x3, 0x2, 0x200}}}}}}}]}}, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r5, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
r6 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000300), 0x1, 0x0)
setsockopt$MRT_ADD_MFC(r6, 0x0, 0xcc, &(0x7f00000003c0)={@dev={0xac, 0x14, 0x14, 0x2d}, @dev={0xac, 0x14, 0x14, 0x1c}, 0x1, "d8725bb245cb6d99bdb9924fec8f0720c372b238f51848e35363b8b8428f9a63", 0x7f, 0x9, 0xffffffff, 0x58a6}, 0x3c)
listen(r5, 0x0)
syz_emit_ethernet(0x36, &(0x7f00000004c0)={@local, @link_local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @rand_addr, @multicast1}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x2}}}}}}, 0x0)
syz_usb_control_io$cdc_ncm(r4, 0x0, 0x0)
ioctl$BTRFS_IOC_SNAP_CREATE_V2(0xffffffffffffffff, 0x50009417, &(0x7f0000000ec0)={{}, 0x0, 0x0, @unused=[0x484, 0x0, 0x0, 0x9], @devid})
ioctl$BTRFS_IOC_BALANCE_V2(0xffffffffffffffff, 0xc4009420, &(0x7f00000000c0)={0x14, 0x0, {0x5, @usage=0x1, 0x0, 0x8000000000000001, 0xffff, 0x80, 0x523, 0x5, 0x0, @struct={0x4}, 0x0, 0x7f, [0x4643, 0x2, 0xc0, 0x8d6b, 0x101, 0x43b5308f]}, {0x6, @struct={0x0, 0xfff}, 0x0, 0x3, 0x5, 0x0, 0x401, 0x7, 0x0, @struct={0x2}, 0x7b63, 0x1, [0x400, 0x0, 0x0, 0x100000001, 0x9]}, {0x4, @struct={0x0, 0x4}, 0x0, 0x1, 0x0, 0x403, 0xff, 0x101, 0x2, @usage=0xffff, 0x3, 0x2, [0x7, 0x1, 0x5, 0x400, 0x5, 0x6]}, {0x0, 0x3, 0x401}})
ioctl$BTRFS_IOC_GET_DEV_STATS(0xffffffffffffffff, 0xc4089434, &(0x7f00000003c0)={0x0, 0x2, 0x0, [0x2, 0x2, 0x7, 0x0, 0x605], [0x0, 0x40, 0xfffffffffffffff8, 0x7, 0x0, 0xcf10, 0xc000000000000000, 0x8, 0x7, 0x3, 0x2, 0x2, 0xba8, 0x0, 0x0, 0x4, 0xfffffffffffffffa, 0x9, 0x2, 0x20, 0x67c4, 0x800, 0x3, 0x10001, 0x8ff6, 0x7fffffffffffffff, 0x0, 0x0, 0x800, 0x10000, 0x8, 0x400, 0x0, 0x7f, 0x0, 0x8, 0xaaa, 0x0, 0x0, 0xfff, 0x0, 0x0, 0x1ff, 0x0, 0xfffffffffffffff7, 0x0, 0x120000000, 0xfbe, 0x8, 0x0, 0x1, 0x50, 0x81, 0x4, 0x8, 0x83, 0x4, 0x2, 0xab4, 0x0, 0x9, 0x5, 0x8, 0x2, 0x1, 0x400, 0x1, 0x6e, 0x6d6d, 0x6, 0x0, 0x0, 0x0, 0x4, 0x2, 0x1, 0x2, 0x5, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x3, 0x0, 0x100000000, 0x4000000000, 0x1001, 0x0, 0x100, 0x0, 0x0, 0x3, 0x80000001, 0x84, 0x0, 0x0, 0x0, 0x80, 0xffffffffffffff01, 0x0, 0x0, 0x81, 0x43c, 0x9, 0x1ff, 0x4, 0x59b, 0x1, 0x81, 0x2, 0x0, 0x800, 0xf9a3, 0x6, 0xe8, 0x0, 0x7f, 0x86, 0x3, 0x80, 0x4]})
ioctl$BTRFS_IOC_SCRUB(0xffffffffffffffff, 0xc400941b, &(0x7f00000005c0)={0x0, 0x8, 0xb35})
ioctl$BTRFS_IOC_SNAP_DESTROY_V2(0xffffffffffffffff, 0x5000943f, &(0x7f0000003680)={{}, 0x0, 0x8, @inherit={0x78, &(0x7f0000000240)=ANY=[@ANYBLOB="06000000000000009c0000000000000008000000000000003202000000000000000000000000000006000000000000000000000000000000060000000000000000ff0f000054680000000001000000000000000700000000000000b100000000000000fbff00ffffff"]}, @devid})
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r2, 0x50009418, &(0x7f0000000740)={{r3}, 0x0, 0x16, @inherit={0x58, &(0x7f0000000500)={0x0, 0x2, 0x9, 0xfffffffffffffff7, {0x29, 0x5, 0x7, 0x654c, 0x7}, [0xbb59, 0xd5]}}, @devid})
syz_usb_control_io$cdc_ncm(r4, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r4, 0x0, &(0x7f0000000340)={0x44, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x20, 0x80, 0x1c, {0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10}}, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$cdc_ncm(r4, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r4, &(0x7f0000000080)={0x14, 0x0, &(0x7f0000000040)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0)
syz_usb_ep_write(r4, 0x82, 0x5, &(0x7f0000002340)='hello')

537.075526ms ago: executing program 4 (id=1684):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x0, 0x7fe2, 0x1}, 0x48)
openat$cgroup_type(0xffffffffffffffff, &(0x7f00000004c0), 0x2, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000004c0), &(0x7f0000000380), 0x9, r1}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r3)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
write$cgroup_subtree(r0, &(0x7f0000000440)=ANY=[], 0xfdef)

466.571482ms ago: executing program 2 (id=1685):
syz_mount_image$ext4(0x0, &(0x7f0000000440)='./file0\x00', 0x0, 0x0, 0x1, 0x0, 0x0)
mkdir(0x0, 0x0)
pipe2$9p(&(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="1500000065ffff"], 0x15)
r2 = dup(r1)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x1, 0x8, 0x8}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000400000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1])
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000180)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})

374.985739ms ago: executing program 2 (id=1686):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_clone(0x4000c0fe, 0x0, 0x0, 0x0, 0x0, 0x0)

326.586683ms ago: executing program 4 (id=1687):
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000440)=ANY=[], 0xfdef)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014fa0000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x141141, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r3)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
write$cgroup_subtree(r2, &(0x7f0000000440)=ANY=[@ANYBLOB="8fedcb5d07081175f37538e486dd6372ce22fdb904"], 0xfdef)

274.668748ms ago: executing program 1 (id=1688):
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
sendmsg$TIPC_NL_LINK_SET(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)={0x18, 0x0, 0x601, 0x0, 0x0, {}, [@TIPC_NLA_LINK={0x4}]}, 0x18}}, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
rt_sigaction(0x19, &(0x7f0000000000)={0xfffffffffffffffc, 0x44000006, 0x0}, 0x0, 0x8, &(0x7f0000000440))
r3 = memfd_create(&(0x7f00000006c0)='\x00\xac=\x9d\xd2\xdb\xe6\xbf\xb4\xf2\xed\x04\x00\x00\x00\xd4N\x12\x9b\x1f\t\xd1Z+\x86T\x16\xf8\x01\x00\x00\x00\x9f+\x8d!\x0fG\xab\xc2\xdc\xa3\xb3\xae8\x9f9?\xefo\xa4k\x01\xb2>\xa1\x9c\x86xm\xe6\x9bZ4\x91\x1a\xdb\xdd\x89\xb9\xc0LF;\xd6\x84\x195\x06\x00\x00\x00~\xf3S\x12\"p^\xc1jP\x8a\xc6[\xbd\xe7q]\xdd\r\x1aZS\x01*\x1b\xfd\xbcMA\xdcq\xa1\x00\xb3\xf9\x91r\x7f\xdc\xf1\xc3G,\xdb\xccS\x15\x95b\x17\xab\xe4?\x96\x95\xa4kP\x99YO\xb8V\xd5p\x90X\xaaf', 0x0)
fallocate(r3, 0x0, 0x400000000000000, 0x7)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x800714, &(0x7f00000004c0)={[{@dioread_nolock}, {@journal_dev={'journal_dev', 0x3d, 0x7}}, {@quota}, {@mblk_io_submit}, {@errors_continue}, {@errors_continue}, {@data_err_ignore}, {@delalloc}, {@jqfmt_vfsold}, {@norecovery}, {@errors_continue}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x1}}]}, 0xee, 0x442, &(0x7f0000000d00)="$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")
r4 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x42, 0x0)
pwritev2(r4, &(0x7f00000000c0)=[{&(0x7f0000000200)="df", 0x1}], 0x1, 0x800001, 0x0, 0x0)

0s ago: executing program 3 (id=1689):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001700)=@base={0x16, 0x0, 0x0, 0x2}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r1, <r2=>0xffffffffffffffff}, 0x0, &(0x7f0000000040)}, 0x20)
bpf$MAP_LOOKUP_ELEM(0x15, &(0x7f0000000200)={r2, 0x0, &(0x7f00000037c0)=""/4109}, 0x20)

kernel console output (not intermixed with test programs):

0.877 uses obsolete (PF_INET,SOCK_PACKET)
[  232.276630][ T3500] EXT4-fs error (device loop0): ext4_lookup:1827: inode #15: comm syz.0.877: iget: bad extra_isize 46 (inode size 256)
[  232.307518][ T3500] EXT4-fs (loop0): Remounting filesystem read-only
[  232.878394][   T25] hid (null): nested delimiters
[  232.923968][   T25] hid-generic 8000:1000:0005.001F: ignoring exceeding usage max
[  232.995553][   T25] hid-generic 8000:1000:0005.001F: unexpected long global item
[  233.009229][   T25] hid-generic: probe of 8000:1000:0005.001F failed with error -22
[  233.130828][  T633] usbhid 5-1:0.0: can't add hid device: -71
[  233.138404][  T633] usbhid: probe of 5-1:0.0 failed with error -71
[  233.205972][  T633] usb 5-1: USB disconnect, device number 30
[  233.628870][ T3430] usb 2-1: new high-speed USB device number 24 using dummy_hcd
[  234.803260][ T3534] EXT4-fs error (device loop3): ext4_ext_check_inode:500: inode #15: comm syz.3.886: pblk 0 bad header/extent: invalid eh_entries - magic f30a, entries 24833, max 4(4), depth 0(0)
[  234.821678][ T3534] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.886: couldn't read orphan inode 15 (err -117)
[  234.834438][ T3534] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue
[  234.842338][ T3430] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  234.843424][ T3534] ext4 filesystem being mounted at /7/file0 supports timestamps until 2038 (0x7fffffff)
[  234.877312][ T3430] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  234.904139][ T3430] usb 2-1: New USB device found, idVendor=1fd2, idProduct=6007, bcdDevice= 0.00
[  234.926888][ T3430] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  234.954809][ T3430] usb 2-1: config 0 descriptor??
[  235.275505][    T5] usb 5-1: new high-speed USB device number 31 using dummy_hcd
[  235.505618][ T3430] hid-multitouch 0003:1FD2:6007.0020: unknown main item tag 0x0
[  235.513161][ T3430] hid-multitouch 0003:1FD2:6007.0020: unknown main item tag 0x0
[  235.535762][    T5] usb 5-1: Using ep0 maxpacket: 32
[  235.563109][ T3430] hid-multitouch 0003:1FD2:6007.0020: unknown main item tag 0x0
[  235.579523][ T3430] hid-multitouch 0003:1FD2:6007.0020: unknown main item tag 0x0
[  235.625669][ T3430] hid-multitouch 0003:1FD2:6007.0020: unknown main item tag 0x0
[  235.642021][ T3430] hid-multitouch 0003:1FD2:6007.0020: hidraw0: USB HID v0.00 Device [HID 1fd2:6007] on usb-dummy_hcd.1-1/input0
[  236.621314][    T5] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  236.668458][    T5] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  236.715565][    T5] usb 5-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  236.747170][    T5] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  236.774120][ T3430] usb 2-1: USB disconnect, device number 24
[  236.787608][    T5] usb 5-1: config 0 descriptor??
[  236.848031][    T5] hub 5-1:0.0: USB hub found
[  237.076446][ T3562] device pim6reg1 entered promiscuous mode
[  237.141313][ T3539] EXT4-fs (loop4): Ignoring removed bh option
[  237.189849][ T3539] EXT4-fs (loop4): mounted filesystem without journal. Opts: init_itable=0x0000000000000003,delalloc,stripe=0x0000000000000020,norecovery,lazytime,lazytime,nodelalloc,nolazytime,bh,,errors=continue
[  237.302018][    T5] hub 5-1:0.0: config failed, can't read hub descriptor (err -22)
[  237.366555][  T290] usb 3-1: new high-speed USB device number 31 using dummy_hcd
[  237.409982][    T5] usbhid 5-1:0.0: can't add hid device: -71
[  237.416042][    T5] usbhid: probe of 5-1:0.0 failed with error -71
[  237.453663][    T5] usb 5-1: USB disconnect, device number 31
[  237.464665][ T3447] usb 2-1: new high-speed USB device number 25 using dummy_hcd
[  237.474994][   T52] usb 1-1: new high-speed USB device number 22 using dummy_hcd
[  237.669961][  T290] usb 3-1: device descriptor read/64, error -71
[  237.854271][ T3447] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  237.867187][ T3447] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  237.882029][ T3447] usb 2-1: New USB device found, idVendor=06cb, idProduct=73f5, bcdDevice= 0.00
[  237.886625][   T52] usb 1-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  237.892023][ T3447] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  237.909491][ T3447] usb 2-1: config 0 descriptor??
[  237.920602][   T52] usb 1-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[  237.930871][   T52] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  238.092430][  T290] usb 3-1: device descriptor read/64, error -71
[  238.191078][   T52] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  238.200346][   T52] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  238.208285][   T52] usb 1-1: Product: syz
[  238.212399][   T52] usb 1-1: Manufacturer: syz
[  238.217269][   T52] usb 1-1: SerialNumber: syz
[  238.244217][ T3430] usb 5-1: new high-speed USB device number 32 using dummy_hcd
[  238.384967][  T290] usb 3-1: new high-speed USB device number 32 using dummy_hcd
[  238.503243][ T3447] usbhid 2-1:0.0: can't add hid device: -71
[  238.509239][ T3447] usbhid: probe of 2-1:0.0 failed with error -71
[  238.518560][ T3447] usb 2-1: USB disconnect, device number 25
[  239.219340][ T3430] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  239.230477][ T3430] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  239.240124][ T3430] usb 5-1: New USB device found, idVendor=06cb, idProduct=73f5, bcdDevice= 0.00
[  239.249204][ T3430] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  239.257350][  T290] usb 3-1: device descriptor read/64, error -71
[  239.265771][ T3430] usb 5-1: config 0 descriptor??
[  239.437494][ T3584] EXT4-fs error (device loop3): ext4_ext_check_inode:500: inode #15: comm syz.3.898: pblk 0 bad header/extent: invalid eh_entries - magic f30a, entries 24833, max 4(4), depth 0(0)
[  239.456491][ T3584] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.898: couldn't read orphan inode 15 (err -117)
[  239.469276][ T3584] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue
[  239.478107][ T3584] ext4 filesystem being mounted at /11/file0 supports timestamps until 2038 (0x7fffffff)
[  239.695927][  T290] usb 3-1: device descriptor read/64, error -71
[  239.705140][   T24] audit: type=1400 audit(2000000066.727:1510): avc:  denied  { load_policy } for  pid=3588 comm="syz.0.900" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[  239.705233][ T3592] SELinux:  policydb version -258872123 does not match my version range 15-33
[  239.734824][   T52] usb 1-1: 0:2 : does not exist
[  239.735497][ T3592] SELinux: failed to load policy
[  239.747768][   T52] usb 1-1: USB disconnect, device number 22
[  239.770126][ T3093] udevd[3093]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory
[  239.826505][  T290] usb usb3-port1: attempt power cycle
[  239.891026][ T3430] usbhid 5-1:0.0: can't add hid device: -71
[  239.897139][ T3430] usbhid: probe of 5-1:0.0 failed with error -71
[  239.909150][ T3430] usb 5-1: USB disconnect, device number 32
[  239.966793][  T633] usb 4-1: new high-speed USB device number 24 using dummy_hcd
[  240.161757][   T52] usb 1-1: new high-speed USB device number 23 using dummy_hcd
[  240.237575][  T633] usb 4-1: Using ep0 maxpacket: 8
[  240.270115][  T290] usb 3-1: new high-speed USB device number 33 using dummy_hcd
[  240.378649][  T633] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0
[  240.389402][  T290] usb 3-1: device descriptor read/8, error -71
[  240.405752][  T633] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x7 has invalid maxpacket 0
[  240.432615][   T52] usb 1-1: Using ep0 maxpacket: 8
[  240.562808][   T52] usb 1-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  240.571625][   T52] usb 1-1: config 1 has no interface number 1
[  240.573036][   T24] audit: type=1400 audit(2000000067.521:1511): avc:  denied  { create } for  pid=3622 comm="syz.2.916" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  240.598033][   T52] usb 1-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  240.620193][   T52] usb 1-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  240.638472][  T290] usb 3-1: device descriptor read/8, error -71
[  240.639177][  T633] usb 4-1: New USB device found, idVendor=05f9, idProduct=ffff, bcdDevice=14.01
[  240.670502][  T633] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  240.693034][  T633] usb 4-1: Product: syz
[  240.697145][  T633] usb 4-1: Manufacturer: syz
[  240.701572][  T633] usb 4-1: SerialNumber: syz
[  240.736296][  T633] usb 4-1: config 0 descriptor??
[  240.780625][  T633] usbserial_generic 4-1:0.0: The "generic" usb-serial driver is only for testing and one-off prototypes.
[  240.822833][  T633] usbserial_generic 4-1:0.0: Tell linux-usb@vger.kernel.org to add your device to a proper driver.
[  240.850716][  T633] usbserial_generic 4-1:0.0: generic converter detected
[  240.866883][   T52] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  240.889633][ T3649] netlink: 12 bytes leftover after parsing attributes in process `syz.1.928'.
[  240.889923][  T633] usb 4-1: generic converter now attached to ttyUSB0
[  240.904986][   T52] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  240.918205][   T52] usb 1-1: Product: syz
[  240.922519][   T52] usb 1-1: Manufacturer: syz
[  240.932408][   T52] usb 1-1: SerialNumber: syz
[  240.994533][   T24] audit: type=1400 audit(2000000067.918:1512): avc:  denied  { setattr } for  pid=3655 comm="syz.1.931" path="/dev/net/tun" dev="devtmpfs" ino=131 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tun_tap_device_t tclass=chr_file permissive=1
[  241.349153][ T3680] netlink: 12 bytes leftover after parsing attributes in process `syz.2.941'.
[  241.363136][   T25] usb 4-1: USB disconnect, device number 24
[  241.378982][   T25] generic ttyUSB0: generic converter now disconnected from ttyUSB0
[  241.397445][   T25] usbserial_generic 4-1:0.0: device disconnected
[  241.688508][ T3688] EXT4-fs (loop1): Ignoring removed oldalloc option
[  241.736296][ T3688] EXT4-fs (loop1): Journaled quota options ignored when QUOTA feature is enabled
[  241.784866][ T3688] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock
[  241.796129][ T3688] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock
[  241.806011][ T3688] EXT4-fs (loop1): ext4_check_descriptors: Inode table for group 1 overlaps superblock
[  241.820500][ T3688] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  241.837291][ T3688] [EXT4 FS bs=4096, gc=2, bpg=34, ipg=32, mo=c040e01c, mo2=0000]
[  241.846849][ T3688] EXT4-fs (loop1): orphan cleanup on readonly fs
[  241.854932][ T3688] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.945: bg 0: block 34: padding at end of block bitmap is not set
[  241.869989][ T3688] Quota error (device loop1): write_blk: dquota write failed
[  241.878542][ T3688] Quota error (device loop1): qtree_write_dquot: Error -28 occurred while creating quota
[  241.888803][ T3688] EXT4-fs error (device loop1): ext4_acquire_dquot:6219: comm syz.1.945: Failed to acquire dquot type 1
[  241.907534][ T3688] EXT4-fs (loop1): 1 truncate cleaned up
[  241.913911][ T3688] EXT4-fs (loop1): mounted filesystem without journal. Opts: oldalloc,discard,usrjquota=./file0,noblock_validity,,errors=continue
[  242.268803][ T3713] EXT4-fs error (device loop3) in ext4_do_update_inode:5275: error 27
[  242.277571][ T3713] EXT4-fs error (device loop3): ext4_dirty_inode:6079: inode #3: comm syz.3.954: mark_inode_dirty error
[  242.290677][ T3713] EXT4-fs error (device loop3) in ext4_do_update_inode:5275: error 27
[  242.299175][ T3713] EXT4-fs error (device loop3): __ext4_ext_dirty:182: inode #3: comm syz.3.954: mark_inode_dirty error
[  242.311746][ T3713] Quota error (device loop3): write_blk: dquota write failed
[  242.333698][ T3713] Quota error (device loop3): qtree_write_dquot: Error -27 occurred while creating quota
[  242.343969][ T3713] EXT4-fs error (device loop3): ext4_acquire_dquot:6219: comm syz.3.954: Failed to acquire dquot type 0
[  242.357983][ T3713] EXT4-fs (loop3): 1 orphan inode deleted
[  242.369660][ T3713] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue
[  242.379184][ T3713] ext4 filesystem being mounted at /14/file1 supports timestamps until 2038 (0x7fffffff)
[  242.691297][ T3741] EXT4-fs (loop3): 1 truncate cleaned up
[  242.717820][ T3741] EXT4-fs (loop3): mounted filesystem without journal. Opts: prjquota,grpquota,debug_want_extra_isize=0x000000000000005c,sysvgroups,lazytime,errors=continue,grpjquota=,,errors=continue
[  242.827427][ T3741] EXT4-fs (loop3): shut down requested (0)
[  242.979014][   T52] usb 1-1: 2:1 : invalid UAC_FORMAT_TYPE desc
[  242.985601][   T52] usb 1-1: 2:1 : invalid channels 0
[  243.061788][   T52] usb 1-1: USB disconnect, device number 23
[  243.256391][ T3784] EXT4-fs (loop3): 1 truncate cleaned up
[  243.269418][ T3784] EXT4-fs (loop3): mounted filesystem without journal. Opts: bsdgroups,grpquota,debug_want_extra_isize=0x000000000000005c,noauto_da_alloc,nolazytime,errors=continue,grpjquota=,errors=remount-ro,nobarrier,
[  243.475797][ T3784] EXT4-fs (loop3): shut down requested (2)
[  243.626011][ T3805] EXT4-fs (loop1): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue
[  243.650548][ T3805] ext4 filesystem being mounted at /37/bus supports timestamps until 2038 (0x7fffffff)
[  243.985444][ T3820] device syzkaller0 entered promiscuous mode
[  244.504113][ T3854] EXT4-fs error (device loop0): ext4_fill_super:4955: inode #2: comm syz.0.1009: iget: special inode unallocated
[  244.725460][ T3854] EXT4-fs (loop0): get root inode failed
[  244.742545][ T3854] EXT4-fs (loop0): mount failed
[  245.684737][ T3876] device pim6reg1 entered promiscuous mode
[  245.809846][   T24] audit: type=1400 audit(2000000072.367:1513): avc:  denied  { setopt } for  pid=3887 comm="syz.1.1022" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  245.873679][   T24] audit: type=1400 audit(2000000072.367:1514): avc:  denied  { nlmsg_read } for  pid=3887 comm="syz.1.1022" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1
[  246.705203][   T24] audit: type=1400 audit(2000000073.188:1515): avc:  denied  { setopt } for  pid=3899 comm="syz.3.1027" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  247.520331][ T3906] EXT4-fs error (device loop3): ext4_read_inode_bitmap:140: comm syz.3.1027: Invalid inode bitmap blk 4 in block_group 0
[  247.533548][ T3906] EXT4-fs (loop3): mounted filesystem without journal. Opts: noblock_validity,resuid=0x0000000000000000,data_err=abort,noload,nobarrier,lazytime,,errors=continue
[  247.559094][ T3924] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1034'.
[  248.016694][ T3940] EXT4-fs warning (device loop3): ext4_block_to_path:107: block 3279945729 > max in inode 13
[  248.026843][ T3940] EXT4-fs warning (device loop3): ext4_block_to_path:107: block 3279945730 > max in inode 13
[  248.037521][ T3940] EXT4-fs (loop3): 1 truncate cleaned up
[  248.043149][ T3940] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue
[  248.114951][ T3940] fuse: Invalid rootmode
[  248.224922][ T3964] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=3964 comm=syz.1.1047
[  248.270849][ T3964] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1047'.
[  248.369275][ T3978] 9pnet_virtio: no channels available for device syz
[  248.664291][ T3981] hub 1-0:1.0: USB hub found
[  248.764247][ T3981] hub 1-0:1.0: 1 port detected
[  249.504493][   T24] audit: type=1400 audit(2000000075.773:1516): avc:  denied  { getopt } for  pid=4007 comm="syz.4.1069" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  249.787506][ T4010] EXT4-fs error (device loop1) in ext4_do_update_inode:5275: error 27
[  249.830857][ T4010] EXT4-fs error (device loop1): ext4_dirty_inode:6079: inode #3: comm syz.1.1071: mark_inode_dirty error
[  249.863937][ T4015] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue
[  249.986620][ T4010] EXT4-fs error (device loop1) in ext4_do_update_inode:5275: error 27
[  250.008185][ T4010] EXT4-fs error (device loop1): __ext4_ext_dirty:182: inode #3: comm syz.1.1071: mark_inode_dirty error
[  250.120405][ T4010] Quota error (device loop1): write_blk: dquota write failed
[  250.140172][ T4010] Quota error (device loop1): qtree_write_dquot: Error -27 occurred while creating quota
[  250.308459][ T4010] EXT4-fs error (device loop1): ext4_acquire_dquot:6219: comm syz.1.1071: Failed to acquire dquot type 0
[  250.328214][ T4010] EXT4-fs error (device loop1) in ext4_do_update_inode:5275: error 27
[  250.361923][ T4010] EXT4-fs error (device loop1): ext4_dirty_inode:6079: inode #16: comm syz.1.1071: mark_inode_dirty error
[  250.402156][ T4010] EXT4-fs error (device loop1) in ext4_do_update_inode:5275: error 27
[  250.455775][ T4010] EXT4-fs error (device loop1): __ext4_ext_dirty:182: inode #16: comm syz.1.1071: mark_inode_dirty error
[  250.548315][ T4010] EXT4-fs error (device loop1) in ext4_do_update_inode:5275: error 27
[  250.600823][ T4010] EXT4-fs error (device loop1) in ext4_orphan_del:3246: error 27
[  250.608898][ T4010] EXT4-fs error (device loop1) in ext4_do_update_inode:5275: error 27
[  250.617607][ T4010] EXT4-fs error (device loop1): ext4_truncate:4361: inode #16: comm syz.1.1071: mark_inode_dirty error
[  250.636937][ T4010] EXT4-fs error (device loop1) in ext4_orphan_cleanup:3108: error 27
[  250.646101][ T4010] EXT4-fs (loop1): 1 truncate cleaned up
[  250.651975][ T4010] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue
[  250.674850][ T4010] ext4 filesystem being mounted at /55/file1 supports timestamps until 2038 (0x7fffffff)
[  251.334086][    T9] Quota error (device loop1): remove_tree: Getting block too big (0 >= 6)
[  251.376183][    T9] EXT4-fs error (device loop1): ext4_release_dquot:6242: comm kworker/u4:1: Failed to release dquot type 0
[  253.013888][ T4046] netlink: 64 bytes leftover after parsing attributes in process `syz.2.1080'.
[  253.227848][   T24] audit: type=1400 audit(2000000079.206:1517): avc:  denied  { write } for  pid=4060 comm="syz.4.1085" name="task" dev="proc" ino=33672 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  253.287864][   T24] audit: type=1400 audit(2000000079.206:1518): avc:  denied  { add_name } for  pid=4060 comm="syz.4.1085" name="core" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  253.308269][   T24] audit: type=1400 audit(2000000079.206:1519): avc:  denied  { create } for  pid=4060 comm="syz.4.1085" name="core" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=file permissive=1
[  253.328202][   T24] audit: type=1400 audit(2000000079.206:1520): avc:  denied  { associate } for  pid=4060 comm="syz.4.1085" name="core" scontext=root:object_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[  253.399122][ T4058] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue
[  253.413902][ T4058] ext4 filesystem being mounted at /36/file0 supports timestamps until 2038 (0x7fffffff)
[  253.489154][ T4058] EXT4-fs error (device loop3): ext4_validate_block_bitmap:429: comm syz.3.1084: bg 0: block 18: invalid block bitmap
[  253.503664][ T4058] Quota error (device loop3): write_blk: dquota write failed
[  253.511144][ T4058] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  253.521245][ T4058] EXT4-fs error (device loop3): ext4_acquire_dquot:6219: comm syz.3.1084: Failed to acquire dquot type 1
[  253.870449][ T4105] device bridge0 entered promiscuous mode
[  253.890611][ T4104] device bridge0 left promiscuous mode
[  255.225956][ T4127] input: syz0 as /devices/virtual/input/input18
[  255.352010][ T4132] device bridge0 entered promiscuous mode
[  255.376845][ T4131] device bridge0 left promiscuous mode
[  255.519587][ T4138] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
[  255.592658][ T4138] ext4 filesystem being mounted at /46/mnt supports timestamps until 2038 (0x7fffffff)
[  255.621211][ T4115] F2FS-fs (loop3): Small segment_count (9 < 1 * 24)
[  255.627890][ T4115] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  255.733787][ T4115] F2FS-fs (loop3): Found nat_bits in checkpoint
[  255.811477][ T4082] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  255.851318][ T4082] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  255.890597][ T4082] F2FS-fs (loop4): Found nat_bits in checkpoint
[  255.911512][ T4115] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  255.928594][ T4115] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  256.061387][   T24] audit: type=1400 audit(2000000081.827:1521): avc:  denied  { rename } for  pid=4114 comm="syz.3.1109" name="file0" dev="loop3" ino=27 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=chr_file permissive=1
[  256.107728][   T24] audit: type=1400 audit(2000000081.827:1522): avc:  denied  { rename } for  pid=4114 comm="syz.3.1109" name="#24" dev="loop3" ino=28 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  256.139563][ T3278] attempt to access beyond end of device
[  256.139563][ T3278] loop3: rw=524288, want=45072, limit=40427
[  256.153680][ T4082] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  256.160716][ T4082] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  256.181091][ T3278] attempt to access beyond end of device
[  256.181091][ T3278] loop3: rw=0, want=45072, limit=40427
[  256.185612][   T24] audit: type=1400 audit(2000000081.827:1523): avc:  denied  { reparent } for  pid=4114 comm="syz.3.1109" name="#24" dev="loop3" ino=28 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  256.324401][  T602] attempt to access beyond end of device
[  256.324401][  T602] loop3: rw=2049, want=41072, limit=40427
[  256.357255][ T4170] EXT4-fs (loop1): Ignoring removed oldalloc option
[  256.371307][ T4170] EXT4-fs (loop1): Journaled quota options ignored when QUOTA feature is enabled
[  256.384065][ T4170] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock
[  256.393880][ T4170] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock
[  256.404046][ T4170] EXT4-fs (loop1): ext4_check_descriptors: Inode table for group 1 overlaps superblock
[  256.434918][ T3430] usb 1-1: new high-speed USB device number 24 using dummy_hcd
[  256.454062][ T4170] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  256.467660][ T4170] [EXT4 FS bs=4096, gc=2, bpg=34, ipg=32, mo=c040e01c, mo2=0000]
[  256.487518][ T4170] EXT4-fs (loop1): orphan cleanup on readonly fs
[  256.512319][ T4170] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.1129: bg 0: block 34: padding at end of block bitmap is not set
[  256.544628][ T4170] EXT4-fs error (device loop1): ext4_acquire_dquot:6219: comm syz.1.1129: Failed to acquire dquot type 1
[  256.566651][ T4170] EXT4-fs (loop1): 1 truncate cleaned up
[  256.576061][ T4170] EXT4-fs (loop1): mounted filesystem without journal. Opts: oldalloc,discard,usrjquota=./file0,noblock_validity,,errors=continue
[  256.645819][  T602] attempt to access beyond end of device
[  256.645819][  T602] loop4: rw=1, want=45224, limit=40427
[  256.857475][ T3430] usb 1-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0xFF, skipping
[  256.882557][ T3430] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  256.896025][ T3430] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  256.905731][ T3430] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  256.925790][ T3430] usb 1-1: config 0 descriptor??
[  256.932688][   T24] kauditd_printk_skb: 2 callbacks suppressed
[  256.932718][   T24] audit: type=1400 audit(2000000082.621:1524): avc:  denied  { setopt } for  pid=4196 comm="syz.1.1140" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  256.987476][ T4168] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  257.010735][ T3430] usbhid 1-1:0.0: couldn't find an input interrupt endpoint
[  257.119305][    T9] device bridge_slave_1 left promiscuous mode
[  257.125444][    T9] bridge0: port 2(bridge_slave_1) entered disabled state
[  257.134845][    T9] device bridge_slave_0 left promiscuous mode
[  257.150023][    T9] bridge0: port 1(bridge_slave_0) entered disabled state
[  257.161313][    T9] device veth1_macvtap left promiscuous mode
[  257.167295][    T9] device veth0_vlan left promiscuous mode
[  257.283651][   T24] audit: type=1400 audit(2000000082.953:1525): avc:  denied  { watch watch_reads } for  pid=4211 comm="syz.4.1134" path="/92/file0" dev="tmpfs" ino=525 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  257.540571][ T4201] bridge0: port 1(bridge_slave_0) entered blocking state
[  257.555798][ T4201] bridge0: port 1(bridge_slave_0) entered disabled state
[  257.572129][ T4201] device bridge_slave_0 entered promiscuous mode
[  257.589890][ T4201] bridge0: port 2(bridge_slave_1) entered blocking state
[  257.608893][ T4201] bridge0: port 2(bridge_slave_1) entered disabled state
[  257.625189][ T4201] device bridge_slave_1 entered promiscuous mode
[  257.853818][ T4201] bridge0: port 2(bridge_slave_1) entered blocking state
[  257.860771][ T4201] bridge0: port 2(bridge_slave_1) entered forwarding state
[  257.868207][ T4201] bridge0: port 1(bridge_slave_0) entered blocking state
[  257.875099][ T4201] bridge0: port 1(bridge_slave_0) entered forwarding state
[  257.942803][  T290] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  257.961511][  T290] bridge0: port 1(bridge_slave_0) entered disabled state
[  257.970593][  T290] bridge0: port 2(bridge_slave_1) entered disabled state
[  258.000378][  T290] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  258.020325][  T290] bridge0: port 1(bridge_slave_0) entered blocking state
[  258.027245][  T290] bridge0: port 1(bridge_slave_0) entered forwarding state
[  258.049597][  T290] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  258.068898][  T290] bridge0: port 2(bridge_slave_1) entered blocking state
[  258.075824][  T290] bridge0: port 2(bridge_slave_1) entered forwarding state
[  258.122036][  T290] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  258.148766][  T290] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  258.211170][   T52] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  258.248328][ T4201] device veth0_vlan entered promiscuous mode
[  258.283144][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  258.308880][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  258.316935][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  258.327471][ T4218] F2FS-fs (loop4): Small segment_count (9 < 1 * 24)
[  258.336751][ T4218] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  258.369456][ T4218] F2FS-fs (loop4): Found nat_bits in checkpoint
[  258.381736][ T3430] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  258.398023][ T4201] device veth1_macvtap entered promiscuous mode
[  258.418778][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  258.459950][   T52] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  258.488120][ T4218] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  258.495504][ T4218] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  258.645971][ T2813] attempt to access beyond end of device
[  258.645971][ T2813] loop4: rw=524288, want=45072, limit=40427
[  258.697161][ T2813] attempt to access beyond end of device
[  258.697161][ T2813] loop4: rw=0, want=45072, limit=40427
[  258.888229][    T7] attempt to access beyond end of device
[  258.888229][    T7] loop4: rw=2049, want=41072, limit=40427
[  259.416833][ T3444] usb 1-1: USB disconnect, device number 24
[  260.186138][  T602] device bridge_slave_1 left promiscuous mode
[  260.218456][  T602] bridge0: port 2(bridge_slave_1) entered disabled state
[  260.322254][  T602] device bridge_slave_0 left promiscuous mode
[  260.417775][  T602] bridge0: port 1(bridge_slave_0) entered disabled state
[  260.653529][  T602] device veth1_macvtap left promiscuous mode
[  260.673488][  T602] device veth0_vlan left promiscuous mode
[  261.176860][   T24] audit: type=1400 audit(2000000086.544:1526): avc:  denied  { create } for  pid=4301 comm="syz.3.1180" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  261.260782][   T24] audit: type=1400 audit(2000000086.627:1527): avc:  denied  { connect } for  pid=4304 comm="syz.3.1181" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  261.338016][ T4286] bridge0: port 1(bridge_slave_0) entered blocking state
[  261.346061][ T4286] bridge0: port 1(bridge_slave_0) entered disabled state
[  261.354352][ T4286] device bridge_slave_0 entered promiscuous mode
[  261.362009][ T4286] bridge0: port 2(bridge_slave_1) entered blocking state
[  261.370454][ T4286] bridge0: port 2(bridge_slave_1) entered disabled state
[  261.382652][ T4286] device bridge_slave_1 entered promiscuous mode
[  261.828980][ T4286] bridge0: port 2(bridge_slave_1) entered blocking state
[  261.836009][ T4286] bridge0: port 2(bridge_slave_1) entered forwarding state
[  261.843174][ T4286] bridge0: port 1(bridge_slave_0) entered blocking state
[  261.850050][ T4286] bridge0: port 1(bridge_slave_0) entered forwarding state
[  261.929144][ T3430] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  261.947419][ T3430] bridge0: port 1(bridge_slave_0) entered disabled state
[  261.961235][ T3430] bridge0: port 2(bridge_slave_1) entered disabled state
[  262.004702][  T290] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  262.023986][  T290] bridge0: port 1(bridge_slave_0) entered blocking state
[  262.030908][  T290] bridge0: port 1(bridge_slave_0) entered forwarding state
[  262.047004][  T290] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  262.055467][  T290] bridge0: port 2(bridge_slave_1) entered blocking state
[  262.062371][  T290] bridge0: port 2(bridge_slave_1) entered forwarding state
[  262.096130][ T3430] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  262.113870][ T3430] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  262.178941][ T3430] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  262.193000][ T3430] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  262.381005][ T4286] device veth0_vlan entered promiscuous mode
[  262.406315][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  262.417057][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  262.462213][ T3430] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  262.470860][ T3430] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  262.487927][ T3430] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  262.505514][ T3430] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  262.522496][ T4286] device veth1_macvtap entered promiscuous mode
[  262.550178][ T3430] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  262.562434][ T3430] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  262.594390][ T3430] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  262.631250][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  262.655843][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  262.666702][ T4336] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue
[  263.035092][   T24] audit: type=1400 audit(2000000088.224:1528): avc:  denied  { ioctl } for  pid=4335 comm="syz.1.1193" path="socket:[34681]" dev="sockfs" ino=34681 ioctlcmd=0x8941 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  264.207139][   T24] audit: type=1400 audit(2000000089.350:1529): avc:  denied  { create } for  pid=4370 comm="syz.4.1205" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  264.236837][ T4371] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4371 comm=syz.4.1205
[  264.278085][ T4371] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1205'.
[  264.365629][  T290] usb 2-1: new high-speed USB device number 26 using dummy_hcd
[  264.487163][ T4383] EXT4-fs (loop4): mounted filesystem without journal. Opts: grpquota,nouid32,minixdf,,errors=continue
[  264.507051][ T4383] ext4 filesystem being mounted at /7/file0 supports timestamps until 2038 (0x7fffffff)
[  264.634704][ T4345] F2FS-fs (loop3): invalid crc value
[  264.657986][  T290] usb 2-1: Using ep0 maxpacket: 32
[  264.798948][  T290] usb 2-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  264.820577][ T4345] F2FS-fs (loop3): Found nat_bits in checkpoint
[  264.858549][  T290] usb 2-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  265.404418][ T4345] F2FS-fs (loop3): Cannot turn on quotas: -2 on 0
[  265.564972][  T290] usb 2-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  265.579338][ T4345] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4
[  265.664423][  T290] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  265.682046][ T4345] attempt to access beyond end of device
[  265.682046][ T4345] loop3: rw=2049, want=45104, limit=40427
[  265.731793][  T290] hub 2-1:4.0: USB hub found
[  265.759398][ T4397] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue
[  265.790184][ T4397] ext4 filesystem being mounted at /8/file0 supports timestamps until 2038 (0x7fffffff)
[  266.077156][ T4367] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  266.090038][ T4367] EXT4-fs (loop1): orphan cleanup on readonly fs
[  266.097740][ T4367] Quota error (device loop1): v2_read_file_info: Can't read info structure
[  266.108086][ T4367] EXT4-fs warning (device loop1): ext4_enable_quotas:6467: Failed to enable quota tracking (type=0, err=-5, ino=3). Please run e2fsck to fix.
[  266.122775][ T4367] EXT4-fs (loop1): Cannot turn on quotas: error -5
[  266.132786][ T4367] EXT4-fs (loop1): 1 truncate cleaned up
[  266.143599][ T4367] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue
[  266.433020][   T24] audit: type=1400 audit(2000000091.399:1530): avc:  denied  { create } for  pid=4366 comm="syz.1.1203" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  266.457008][  T290] hub 2-1:4.0: 2 ports detected
[  266.462057][  T290] usb 2-1: selecting invalid altsetting 1
[  266.477814][  T290] hub 2-1:4.0: Using single TT (err -22)
[  266.706498][  T290] hub 2-1:4.0: hub_hub_status failed (err = -71)
[  266.712877][  T290] hub 2-1:4.0: config failed, can't get hub status (err -71)
[  266.771037][  T290] usb 2-1: USB disconnect, device number 26
[  266.970502][   T24] audit: type=1400 audit(2000000091.897:1531): avc:  denied  { ioctl } for  pid=4436 comm="syz.4.1227" path="socket:[35790]" dev="sockfs" ino=35790 ioctlcmd=0x8914 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  267.109521][ T4437] device syzkaller0 entered promiscuous mode
[  267.815343][ T4489] bridge0: port 3(vlan2) entered blocking state
[  267.831789][ T4489] bridge0: port 3(vlan2) entered disabled state
[  268.076713][ T4502] EXT4-fs (loop1): mounted filesystem without journal. Opts: discard,bsdgroups,resuid=0x0000000000000000,noblock_validity,nolazytime,errors=remount-ro,nojournal_checksum,data_err=abort,
[  268.147192][ T4509] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1259'.
[  268.401576][ T4531] device pim6reg1 entered promiscuous mode
[  268.504708][ T4540] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1273'.
[  268.725404][   T24] audit: type=1400 audit(2000000093.503:1532): avc:  denied  { setattr } for  pid=4560 comm="syz.2.1284" name="PACKET" dev="sockfs" ino=36096 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  268.844242][ T4570] device pim6reg1 entered promiscuous mode
[  268.931474][ T4583] uffd: Set unprivileged_userfaultfd sysctl knob to 1 if kernel faults must be handled without obtaining CAP_SYS_PTRACE capability
[  269.172400][ T4604] device pim6reg1 entered promiscuous mode
[  269.178919][   T24] audit: type=1400 audit(2000000093.937:1533): avc:  denied  { bind } for  pid=4605 comm="syz.3.1303" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  269.206673][   T24] audit: type=1400 audit(2000000093.956:1534): avc:  denied  { setopt } for  pid=4605 comm="syz.3.1303" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  269.278262][  T290] usb 3-1: new high-speed USB device number 35 using dummy_hcd
[  269.289428][ T4612] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1307'.
[  269.310562][ T4608] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1305'.
[  269.555484][  T290] usb 3-1: Using ep0 maxpacket: 32
[  269.685161][  T290] usb 3-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  269.695965][  T290] usb 3-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  269.705569][  T290] usb 3-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  269.715044][  T290] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  269.783910][  T290] hub 3-1:4.0: USB hub found
[  270.085975][  T290] hub 3-1:4.0: 2 ports detected
[  270.090821][  T290] usb 3-1: selecting invalid altsetting 1
[  270.102443][  T290] hub 3-1:4.0: Using single TT (err -22)
[  270.150124][ T4641] device pim6reg1 entered promiscuous mode
[  270.313493][  T290] hub 3-1:4.0: hub_hub_status failed (err = -71)
[  270.319828][  T290] hub 3-1:4.0: config failed, can't get hub status (err -71)
[  270.379247][  T290] usb 3-1: USB disconnect, device number 35
[  270.675257][ T4664] device pim6reg1 entered promiscuous mode
[  271.223512][   T20] usb 2-1: new high-speed USB device number 27 using dummy_hcd
[  271.326312][ T3430] usb 3-1: new high-speed USB device number 36 using dummy_hcd
[  271.591939][ T3430] usb 3-1: Using ep0 maxpacket: 16
[  271.633959][ T4696] device pim6reg1 entered promiscuous mode
[  271.641654][   T20] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  271.652622][   T20] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  271.662443][   T20] usb 2-1: New USB device found, idVendor=1fd2, idProduct=6007, bcdDevice= 0.00
[  271.672179][   T20] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  271.681761][   T20] usb 2-1: config 0 descriptor??
[  271.722204][ T3430] usb 3-1: config 0 has an invalid interface number: 2 but max is 0
[  271.730413][ T3430] usb 3-1: config 0 has no interface number 0
[  271.736454][ T3430] usb 3-1: config 0 interface 2 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0
[  271.753736][ T3430] usb 3-1: config 0 interface 2 altsetting 0 bulk endpoint 0xB has invalid maxpacket 0
[  271.884747][ T3430] usb 3-1: New USB device found, idVendor=0582, idProduct=0005, bcdDevice= 0.88
[  271.894264][ T3430] usb 3-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[  271.902599][ T3430] usb 3-1: Product: syz
[  271.906733][ T3430] usb 3-1: SerialNumber: syz
[  271.912595][ T3430] usb 3-1: config 0 descriptor??
[  271.939948][ T4702] EXT4-fs (loop4): mounted filesystem without journal. Opts: nodelalloc,grpid,auto_da_alloc,,errors=continue
[  271.951569][ T4702] ext4 filesystem being mounted at /43/file1 supports timestamps until 2038 (0x7fffffff)
[  272.287927][ T4675] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue
[  272.301537][ T4675] ext4 filesystem being mounted at /109/bus supports timestamps until 2038 (0x7fffffff)
[  272.309088][ T3430] snd-usb-audio: probe of 3-1:0.2 failed with error -12
[  272.351411][ T3430] usb 3-1: USB disconnect, device number 36
[  272.832513][   T24] audit: type=1400 audit(2000000097.306:1535): avc:  denied  { read } for  pid=4674 comm="syz.1.1334" name="loop-control" dev="devtmpfs" ino=110 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  272.860354][   T24] audit: type=1400 audit(2000000097.306:1536): avc:  denied  { open } for  pid=4674 comm="syz.1.1334" path="/dev/loop-control" dev="devtmpfs" ino=110 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  272.942522][ T4734] device pim6reg1 entered promiscuous mode
[  273.203757][ T4740] EXT4-fs (loop4): mounted filesystem without journal. Opts: nodelalloc,grpid,auto_da_alloc,,errors=continue
[  273.238794][ T4740] ext4 filesystem being mounted at /48/file1 supports timestamps until 2038 (0x7fffffff)
[  273.423107][ T4724] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  273.451171][ T4724] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  273.525634][ T4724] F2FS-fs (loop0): Found nat_bits in checkpoint
[  274.139428][ T4724] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  274.430765][ T4724] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  274.454648][ T4724] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  274.826917][   T24] audit: type=1400 audit(2000000099.143:1537): avc:  denied  { watch } for  pid=4723 comm="syz.0.1350" path="/77/file0" dev="loop0" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  274.910644][   T24] audit: type=1400 audit(2000000099.226:1538): avc:  denied  { ioctl } for  pid=4782 comm="syz.2.1370" path="socket:[37404]" dev="sockfs" ino=37404 ioctlcmd=0x89a1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  275.083383][   T24] audit: type=1326 audit(2000000099.383:1539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4786 comm="syz.2.1372" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21579f3bd9 code=0x7ffc0000
[  275.132663][   T24] audit: type=1326 audit(2000000099.411:1540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4786 comm="syz.2.1372" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f21579f3bd9 code=0x7ffc0000
[  275.156868][   T20] usbhid 2-1:0.0: can't add hid device: -71
[  275.168769][   T20] usbhid: probe of 2-1:0.0 failed with error -71
[  275.172768][   T24] audit: type=1326 audit(2000000099.420:1541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4786 comm="syz.2.1372" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21579f3bd9 code=0x7ffc0000
[  275.201256][   T20] usb 2-1: USB disconnect, device number 27
[  275.287018][   T24] audit: type=1326 audit(2000000099.420:1542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4786 comm="syz.2.1372" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f21579f59f7 code=0x7ffc0000
[  275.365493][   T24] audit: type=1326 audit(2000000099.420:1543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4786 comm="syz.2.1372" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7f21579f596c code=0x7ffc0000
[  275.593556][   T24] audit: type=1326 audit(2000000099.420:1544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4786 comm="syz.2.1372" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f21579f58a4 code=0x7ffc0000
[  275.750229][   T24] audit: type=1326 audit(2000000099.420:1545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4786 comm="syz.2.1372" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f21579f58a4 code=0x7ffc0000
[  275.801632][   T24] audit: type=1326 audit(2000000099.420:1546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4786 comm="syz.2.1372" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f21579f290a code=0x7ffc0000
[  276.001609][   T20] usb 2-1: new high-speed USB device number 28 using dummy_hcd
[  276.615708][   T20] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  276.659933][   T20] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  276.821602][   T20] usb 2-1: New USB device found, idVendor=06cb, idProduct=73f5, bcdDevice= 0.00
[  276.946291][   T20] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  277.426801][   T20] usb 2-1: config 0 descriptor??
[  277.593261][ T4830] overlayfs: statfs failed on './file0'
[  278.006701][   T20] usbhid 2-1:0.0: can't add hid device: -71
[  278.016828][   T20] usbhid: probe of 2-1:0.0 failed with error -71
[  278.207427][   T20] usb 2-1: USB disconnect, device number 28
[  280.297713][   T24] kauditd_printk_skb: 72 callbacks suppressed
[  280.297761][   T24] audit: type=1326 audit(2000000104.192:1619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4891 comm="syz.1.1409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6abeb82bd9 code=0x7ffc0000
[  280.329179][   T24] audit: type=1326 audit(2000000104.192:1620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4891 comm="syz.1.1409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6abeb82bd9 code=0x7ffc0000
[  280.357783][   T24] audit: type=1326 audit(2000000104.192:1621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4891 comm="syz.1.1409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f6abeb82bd9 code=0x7ffc0000
[  280.404502][   T24] audit: type=1326 audit(2000000104.192:1622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4891 comm="syz.1.1409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6abeb82bd9 code=0x7ffc0000
[  280.465213][   T24] audit: type=1326 audit(2000000104.192:1623): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4891 comm="syz.1.1409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f6abeb849f7 code=0x7ffc0000
[  280.521628][   T24] audit: type=1326 audit(2000000104.192:1624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4891 comm="syz.1.1409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7f6abeb8496c code=0x7ffc0000
[  280.547864][   T24] audit: type=1326 audit(2000000104.201:1625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4891 comm="syz.1.1409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f6abeb848a4 code=0x7ffc0000
[  280.571768][   T24] audit: type=1326 audit(2000000104.201:1626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4891 comm="syz.1.1409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f6abeb848a4 code=0x7ffc0000
[  280.596340][   T24] audit: type=1326 audit(2000000104.201:1627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4891 comm="syz.1.1409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f6abeb8190a code=0x7ffc0000
[  280.621183][ T4898] EXT4-fs (loop4): Ignoring removed mblk_io_submit option
[  280.628331][ T4898] EXT4-fs (loop4): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  280.641032][   T24] audit: type=1326 audit(2000000104.201:1628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4891 comm="syz.1.1409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6abeb82bd9 code=0x7ffc0000
[  280.693605][ T4898] EXT4-fs error (device loop4): ext4_orphan_get:1391: inode #15: comm syz.4.1411: casefold flag without casefold feature
[  280.714977][ T4898] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: inode #12: comm syz.4.1411: missing EA_INODE flag
[  280.797488][ T4898] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.1411: error while reading EA inode 12 err=-117
[  280.812081][ T4909] futex_wake_op: syz.1.1415 tries to shift op by 32; fix this program
[  280.867406][ T4898] EXT4-fs (loop4): 1 orphan inode deleted
[  280.891374][ T4898] EXT4-fs (loop4): mounted filesystem without journal. Opts: dioread_nolock,journal_dev=0x0000000000000007,quota,mblk_io_submit,errors=continue,errors=continue,data_err=ignore,delalloc,jqfmt=vfsold,norecovery,errors=continue,journal_ioprio=0x0000000000000001,,errors=continue
[  281.038443][ T4917] overlayfs: statfs failed on './file0'
[  281.172161][ T4926] device pim6reg1 entered promiscuous mode
[  281.637654][ T4950] overlayfs: statfs failed on './file0'
[  281.690459][ T4951] SELinux:  policydb version -258872123 does not match my version range 15-33
[  281.725747][ T4951] SELinux: failed to load policy
[  281.810020][ T4960] device pim6reg1 entered promiscuous mode
[  282.046959][   T20] usb 4-1: new high-speed USB device number 25 using dummy_hcd
[  282.092224][ T4975] syz.4.1441[4975] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  282.092350][ T4975] syz.4.1441[4975] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  282.237201][ T4981] overlayfs: statfs failed on './file0'
[  282.317930][   T20] usb 4-1: Using ep0 maxpacket: 8
[  282.456527][ T4988] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 198)
[  282.465635][ T4988] FAT-fs (loop1): Filesystem has been set read-only
[  282.472923][ T4988] FAT-fs (loop1): error, fat_free_clusters: deleting FAT entry beyond EOF
[  282.481707][   T20] usb 4-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  282.488703][ T4993] device pim6reg1 entered promiscuous mode
[  282.495534][   T20] usb 4-1: config 1 has no interface number 1
[  282.502592][   T20] usb 4-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  282.517274][   T20] usb 4-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  282.599466][ T3444] usb 3-1: new high-speed USB device number 37 using dummy_hcd
[  282.729622][   T20] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  282.738554][   T20] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  282.752547][   T20] usb 4-1: Product: syz
[  282.756581][   T20] usb 4-1: Manufacturer: syz
[  282.761191][   T20] usb 4-1: SerialNumber: syz
[  282.813561][ T5003] syz.4.1453[5003] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  282.813689][ T5003] syz.4.1453[5003] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  282.870291][ T3444] usb 3-1: Using ep0 maxpacket: 32
[  283.195522][ T3444] usb 3-1: New USB device found, idVendor=1557, idProduct=8150, bcdDevice=29.ed
[  283.215563][ T3444] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  283.226365][ T3444] usb 3-1: Product: syz
[  283.237283][ T3444] usb 3-1: Manufacturer: syz
[  283.249942][ T3444] usb 3-1: SerialNumber: syz
[  283.267017][ T3444] usb 3-1: config 0 descriptor??
[  283.475309][  T308] usb 2-1: new high-speed USB device number 29 using dummy_hcd
[  283.748027][  T308] usb 2-1: Using ep0 maxpacket: 32
[  283.887152][ T4986] SELinux:  Context system_u:object_r:dhcp_state_t:s0 is not valid (left unmapped).
[  283.898667][  T308] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  283.931015][  T308] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  283.997995][  T308] usb 2-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  284.072239][  T308] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  284.091231][ T4986] udc-core: couldn't find an available UDC or it's busy
[  284.124343][ T4986] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  284.160317][  T308] usb 2-1: config 0 descriptor??
[  284.427489][  T308] hub 2-1:0.0: USB hub found
[  284.605472][ T5029] device pim6reg1 entered promiscuous mode
[  284.636416][ T3444] (unnamed net_device) (uninitialized): Assigned a random MAC address: 92:59:f8:9b:bd:64
[  284.641475][ T3444] rtl8150 3-1:0.0: eth1: rtl8150 is detected
[  284.768675][ T5012] EXT4-fs (loop1): Ignoring removed bh option
[  284.799685][ T5036] syz.0.1464[5036] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  284.800243][ T5036] syz.0.1464[5036] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  284.823588][ T5012] EXT4-fs (loop1): mounted filesystem without journal. Opts: init_itable=0x0000000000000003,delalloc,stripe=0x0000000000000020,norecovery,lazytime,lazytime,nodelalloc,nolazytime,bh,,errors=continue
[  284.983364][   T20] usb 4-1: 2:1 : invalid UAC_FORMAT_TYPE desc
[  284.996404][   T20] usb 4-1: 2:1 : invalid channels 0
[  285.028419][ T3444] usb 3-1: USB disconnect, device number 37
[  285.038514][ T5048] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  285.040338][  T308] hub 2-1:0.0: config failed, can't read hub descriptor (err -22)
[  285.057232][ T5048] EXT4-fs (loop3): can't mount with data=, fs mounted w/o journal
[  285.079542][   T20] usb 4-1: USB disconnect, device number 25
[  285.122944][ T3093] udevd[3093]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory
[  285.266094][  T308] usbhid 2-1:0.0: can't add hid device: -71
[  285.280973][  T308] usbhid: probe of 2-1:0.0 failed with error -71
[  285.320185][  T308] usb 2-1: USB disconnect, device number 29
[  285.572520][ T5085] device pim6reg1 entered promiscuous mode
[  285.710126][ T5092] SELinux: security_context_str_to_sid(u) failed for (dev tmpfs, type tmpfs) errno=-22
[  286.958286][ T5104] SELinux:  policydb version -258872123 does not match my version range 15-33
[  286.979156][ T5104] SELinux: failed to load policy
[  287.121722][ T5110] capability: warning: `syz.3.1480' uses deprecated v2 capabilities in a way that may be insecure
[  287.300454][   T24] kauditd_printk_skb: 238 callbacks suppressed
[  287.300491][   T24] audit: type=1326 audit(2000000110.653:1867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5114 comm="syz.4.1482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0893b13bd9 code=0x7ffc0000
[  287.330069][   T25] usb 3-1: new high-speed USB device number 38 using dummy_hcd
[  287.359408][   T24] audit: type=1326 audit(2000000110.653:1868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5114 comm="syz.4.1482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0893b13bd9 code=0x7ffc0000
[  287.441625][   T24] audit: type=1326 audit(2000000110.653:1869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5114 comm="syz.4.1482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f0893b13bd9 code=0x7ffc0000
[  287.496528][   T24] audit: type=1326 audit(2000000110.653:1870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5114 comm="syz.4.1482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0893b13bd9 code=0x7ffc0000
[  287.498089][ T5121] device pim6reg1 entered promiscuous mode
[  287.550752][   T24] audit: type=1326 audit(2000000110.653:1871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5114 comm="syz.4.1482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0893b13bd9 code=0x7ffc0000
[  287.594158][   T24] audit: type=1326 audit(2000000110.653:1872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5114 comm="syz.4.1482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f0893b159f7 code=0x7ffc0000
[  287.626517][   T25] usb 3-1: Using ep0 maxpacket: 8
[  287.652248][   T24] audit: type=1326 audit(2000000110.653:1873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5114 comm="syz.4.1482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7f0893b1596c code=0x7ffc0000
[  287.713688][   T24] audit: type=1326 audit(2000000110.653:1874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5114 comm="syz.4.1482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f0893b158a4 code=0x7ffc0000
[  287.724130][ T3430] usb 4-1: new high-speed USB device number 26 using dummy_hcd
[  287.767392][   T24] audit: type=1326 audit(2000000110.653:1875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5114 comm="syz.4.1482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f0893b158a4 code=0x7ffc0000
[  287.790890][   T25] usb 3-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  287.799689][   T25] usb 3-1: config 1 has no interface number 1
[  287.807501][   T25] usb 3-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  287.820774][   T25] usb 3-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  287.831805][   T24] audit: type=1326 audit(2000000110.653:1876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5114 comm="syz.4.1482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f0893b1290a code=0x7ffc0000
[  287.997853][ T5129] FAULT_INJECTION: forcing a failure.
[  287.997853][ T5129] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  288.011165][ T3430] usb 4-1: Using ep0 maxpacket: 32
[  288.025907][ T5129] CPU: 0 PID: 5129 Comm: syz.0.1488 Not tainted 5.10.218-syzkaller-00638-g3feee789f446 #0
[  288.035672][ T5129] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  288.045541][ T5129] Call Trace:
[  288.048865][ T5129]  dump_stack_lvl+0x1e2/0x24b
[  288.053483][ T5129]  ? bfq_pos_tree_add_move+0x43b/0x43b
[  288.058980][ T5129]  dump_stack+0x15/0x17
[  288.062966][ T5129]  should_fail+0x3c6/0x510
[  288.067211][ T5129]  should_fail_usercopy+0x1a/0x20
[  288.072075][ T5129]  _copy_from_user+0x20/0xd0
[  288.076505][ T5129]  memdup_user+0x5e/0xb0
[  288.080577][ T5129]  __se_sys_bpf+0x4beb/0x11cb0
[  288.081865][   T25] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  288.085185][ T5129]  ? stack_trace_snprint+0xf0/0xf0
[  288.085245][ T5129]  ? kmem_cache_free+0xa9/0x1e0
[  288.101321][   T25] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  288.103756][ T5129]  ? kmem_cache_free+0xa9/0x1e0
[  288.103815][ T5129]  ? kasan_set_track+0x5d/0x70
[  288.120952][ T5129]  ? kasan_set_track+0x4b/0x70
[  288.123978][   T25] usb 3-1: Product: syz
[  288.125534][ T5129]  ? kasan_set_free_info+0x23/0x40
[  288.125570][ T5129]  ? ____kasan_slab_free+0x121/0x160
[  288.125624][ T5129]  ? __kasan_slab_free+0x11/0x20
[  288.132329][   T25] usb 3-1: Manufacturer: syz
[  288.134476][ T5129]  ? __x64_sys_bpf+0x90/0x90
[  288.134534][ T5129]  ? do_sys_openat2+0x5e1/0x6f0
[  288.148032][   T25] usb 3-1: SerialNumber: syz
[  288.148913][ T5129]  ? __x64_sys_openat+0x243/0x290
[  288.167382][ T5129]  ? do_syscall_64+0x34/0x70
[  288.171809][ T5129]  ? entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  288.178147][ T5129]  ? _kstrtoull+0x3a0/0x4a0
[  288.182488][ T5129]  ? kstrtouint_from_user+0x20a/0x2a0
[  288.187713][ T5129]  ? kstrtol_from_user+0x310/0x310
[  288.192729][ T5129]  ? memset+0x35/0x40
[  288.196556][ T5129]  ? __fsnotify_parent+0x4b9/0x6c0
[  288.201506][ T5129]  ? __fsnotify_update_child_dentry_flags+0x2b0/0x2b0
[  288.208103][ T5129]  ? proc_fail_nth_write+0x20b/0x290
[  288.213217][ T5129]  ? proc_fail_nth_read+0x210/0x210
[  288.218252][ T5129]  ? security_file_permission+0x86/0xb0
[  288.223630][ T5129]  ? rw_verify_area+0x1c3/0x360
[  288.228579][ T5129]  ? slab_free_freelist_hook+0xc0/0x190
[  288.233980][ T5129]  ? preempt_count_add+0x92/0x1a0
[  288.238927][ T5129]  ? vfs_write+0x854/0xe70
[  288.243187][ T5129]  ? kernel_write+0x3d0/0x3d0
[  288.247701][ T5129]  ? __kasan_check_write+0x14/0x20
[  288.252654][ T5129]  ? mutex_lock+0xa5/0x110
[  288.256892][ T5129]  ? mutex_trylock+0xa0/0xa0
[  288.261329][ T5129]  ? __kasan_check_write+0x14/0x20
[  288.266283][ T5129]  ? fput_many+0x160/0x1b0
[  288.270624][ T5129]  ? debug_smp_processor_id+0x17/0x20
[  288.275822][ T5129]  __x64_sys_bpf+0x7b/0x90
[  288.280068][ T5129]  do_syscall_64+0x34/0x70
[  288.284333][ T5129]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  288.290043][ T5129] RIP: 0033:0x7f14b73aabd9
[  288.294306][ T5129] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  288.313740][ T5129] RSP: 002b:00007f14b662c048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  288.321987][ T5129] RAX: ffffffffffffffda RBX: 00007f14b7538f60 RCX: 00007f14b73aabd9
[  288.329900][ T5129] RDX: 0000000000000020 RSI: 0000000020000180 RDI: 0000000000000002
[  288.337707][ T5129] RBP: 00007f14b662c0a0 R08: 0000000000000000 R09: 0000000000000000
[  288.345518][ T5129] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  288.353335][ T5129] R13: 000000000000000b R14: 00007f14b7538f60 R15: 00007ffec6820238
[  288.476434][ T3430] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  288.487778][ T3430] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  288.501464][ T3430] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  288.510717][ T3430] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  288.533275][ T3430] usb 4-1: config 0 descriptor??
[  288.581194][ T3430] hub 4-1:0.0: USB hub found
[  288.759552][ T5145] device pim6reg1 entered promiscuous mode
[  288.873506][ T5118] EXT4-fs (loop3): Ignoring removed bh option
[  288.902178][ T5118] EXT4-fs (loop3): mounted filesystem without journal. Opts: init_itable=0x0000000000000003,delalloc,stripe=0x0000000000000020,norecovery,lazytime,lazytime,nodelalloc,nolazytime,bh,,errors=continue
[  289.883511][ T3430] hub 4-1:0.0: config failed, can't read hub descriptor (err -22)
[  290.006951][ T3430] usbhid 4-1:0.0: can't add hid device: -71
[  290.013620][ T3430] usbhid: probe of 4-1:0.0 failed with error -71
[  290.054235][ T3430] usb 4-1: USB disconnect, device number 26
[  290.083289][ T5173] FAULT_INJECTION: forcing a failure.
[  290.083289][ T5173] name failslab, interval 1, probability 0, space 0, times 0
[  290.106918][ T5173] CPU: 1 PID: 5173 Comm: syz.4.1504 Not tainted 5.10.218-syzkaller-00638-g3feee789f446 #0
[  290.116666][ T5173] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  290.126551][ T5173] Call Trace:
[  290.129695][ T5173]  dump_stack_lvl+0x1e2/0x24b
[  290.134207][ T5173]  ? panic+0x812/0x812
[  290.138120][ T5173]  ? bfq_pos_tree_add_move+0x43b/0x43b
[  290.143407][ T5173]  dump_stack+0x15/0x17
[  290.147400][ T5173]  should_fail+0x3c6/0x510
[  290.151693][ T5173]  ? __se_sys_bpf+0x75e6/0x11cb0
[  290.156431][ T5173]  __should_failslab+0xa4/0xe0
[  290.161122][ T5173]  should_failslab+0x9/0x20
[  290.165462][ T5173]  __kmalloc+0x60/0x330
[  290.169457][ T5173]  __se_sys_bpf+0x75e6/0x11cb0
[  290.174062][ T5173]  ? stack_trace_snprint+0xf0/0xf0
[  290.179040][ T5173]  ? kmem_cache_free+0xa9/0x1e0
[  290.183693][ T5173]  ? kmem_cache_free+0xa9/0x1e0
[  290.188369][ T5173]  ? kasan_set_track+0x5d/0x70
[  290.192971][ T5173]  ? kasan_set_track+0x4b/0x70
[  290.197574][ T5173]  ? kasan_set_free_info+0x23/0x40
[  290.202535][ T5173]  ? ____kasan_slab_free+0x121/0x160
[  290.207644][ T5173]  ? __kasan_slab_free+0x11/0x20
[  290.212426][ T5173]  ? __x64_sys_bpf+0x90/0x90
[  290.217031][ T5173]  ? do_sys_openat2+0x5e1/0x6f0
[  290.221708][ T5173]  ? __x64_sys_openat+0x243/0x290
[  290.226572][ T5173]  ? do_syscall_64+0x34/0x70
[  290.231001][ T5173]  ? entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  290.236900][ T5173]  ? _kstrtoull+0x3a0/0x4a0
[  290.241235][ T5173]  ? kstrtouint_from_user+0x20a/0x2a0
[  290.246457][ T5173]  ? kstrtol_from_user+0x310/0x310
[  290.251486][ T5173]  ? memset+0x35/0x40
[  290.255293][ T5173]  ? __fsnotify_parent+0x4b9/0x6c0
[  290.260256][ T5173]  ? __fsnotify_update_child_dentry_flags+0x2b0/0x2b0
[  290.266842][ T5173]  ? proc_fail_nth_write+0x20b/0x290
[  290.271960][ T5173]  ? proc_fail_nth_read+0x210/0x210
[  290.277008][ T5173]  ? security_file_permission+0x86/0xb0
[  290.282378][ T5173]  ? rw_verify_area+0x1c3/0x360
[  290.287061][ T5173]  ? slab_free_freelist_hook+0xc0/0x190
[  290.292447][ T5173]  ? preempt_count_add+0x92/0x1a0
[  290.297314][ T5173]  ? vfs_write+0x854/0xe70
[  290.301566][ T5173]  ? kernel_write+0x3d0/0x3d0
[  290.306087][ T5173]  ? __kasan_check_write+0x14/0x20
[  290.311108][ T5173]  ? mutex_lock+0xa5/0x110
[  290.315362][ T5173]  ? mutex_trylock+0xa0/0xa0
[  290.319793][ T5173]  ? __kasan_check_write+0x14/0x20
[  290.324742][ T5173]  ? fput_many+0x160/0x1b0
[  290.329013][ T5173]  ? debug_smp_processor_id+0x17/0x20
[  290.334197][ T5173]  __x64_sys_bpf+0x7b/0x90
[  290.338448][ T5173]  do_syscall_64+0x34/0x70
[  290.342704][ T5173]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  290.348426][ T5173] RIP: 0033:0x7f0893b13bd9
[  290.352685][ T5173] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  290.372120][ T5173] RSP: 002b:00007f0892d95048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  290.380455][ T5173] RAX: ffffffffffffffda RBX: 00007f0893ca1f60 RCX: 00007f0893b13bd9
[  290.388354][ T5173] RDX: 0000000000000020 RSI: 0000000020000180 RDI: 0000000000000002
[  290.396253][ T5173] RBP: 00007f0892d950a0 R08: 0000000000000000 R09: 0000000000000000
[  290.404233][ T5173] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  290.412137][ T5173] R13: 000000000000000b R14: 00007f0893ca1f60 R15: 00007fffb97335e8
[  290.420376][ T3444] usb 1-1: new high-speed USB device number 25 using dummy_hcd
[  290.499003][   T25] usb 3-1: 2:1 : invalid UAC_FORMAT_TYPE desc
[  290.504958][   T25] usb 3-1: 2:1 : invalid channels 0
[  290.510049][   T20] usb 2-1: new high-speed USB device number 30 using dummy_hcd
[  290.549974][   T25] usb 3-1: USB disconnect, device number 38
[  290.569926][ T5182] device pim6reg1 entered promiscuous mode
[  290.682143][ T3444] usb 1-1: Using ep0 maxpacket: 16
[  290.790122][   T20] usb 2-1: Using ep0 maxpacket: 32
[  290.811899][ T3444] usb 1-1: config 0 has an invalid interface number: 2 but max is 0
[  290.819869][ T3444] usb 1-1: config 0 has no interface number 0
[  290.825868][ T3444] usb 1-1: config 0 interface 2 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0
[  290.835518][ T3444] usb 1-1: config 0 interface 2 altsetting 0 bulk endpoint 0xB has invalid maxpacket 0
[  290.920226][   T20] usb 2-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  290.951574][   T20] usb 2-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  290.973956][   T20] usb 2-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  290.977158][ T3444] usb 1-1: New USB device found, idVendor=0582, idProduct=0005, bcdDevice= 0.88
[  290.998870][   T20] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  291.007794][ T3444] usb 1-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[  291.015710][ T3444] usb 1-1: Product: syz
[  291.042279][ T3444] usb 1-1: SerialNumber: syz
[  291.120566][ T3444] usb 1-1: config 0 descriptor??
[  291.207166][   T20] hub 2-1:4.0: USB hub found
[  291.592334][   T20] hub 2-1:4.0: config failed, hub has too many ports! (err -19)
[  291.790930][ T5194] EXT4-fs error (device loop4): ext4_expand_extra_isize_ea:2750: inode #11: comm syz.4.1510: corrupted xattr block 95
[  291.804417][ T5194] EXT4-fs (loop4): Remounting filesystem read-only
[  291.811004][ T5194] EXT4-fs error (device loop4): ext4_evict_inode:294: comm syz.4.1510: couldn't truncate inode 11 (err -30)
[  291.824066][ T5194] EXT4-fs (loop4): 1 orphan inode deleted
[  291.829741][ T5194] EXT4-fs (loop4): mounted filesystem without journal. Opts: errors=remount-ro,bsddf,
[  292.234015][   T20] usb 2-1: USB disconnect, device number 30
[  292.338901][ T3430] usb 4-1: new high-speed USB device number 27 using dummy_hcd
[  292.565074][ T5204] EXT4-fs (loop4): Ignoring removed mblk_io_submit option
[  292.572915][ T5204] EXT4-fs (loop4): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  292.594419][ T5204] EXT4-fs error (device loop4): ext4_orphan_get:1391: inode #15: comm syz.4.1514: casefold flag without casefold feature
[  292.599449][ T3430] usb 4-1: Using ep0 maxpacket: 32
[  292.607775][ T5204] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: inode #12: comm syz.4.1514: missing EA_INODE flag
[  292.625425][ T5204] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.1514: error while reading EA inode 12 err=-117
[  292.638326][ T5204] EXT4-fs (loop4): 1 orphan inode deleted
[  292.644387][ T5204] EXT4-fs (loop4): mounted filesystem without journal. Opts: dioread_nolock,journal_dev=0x0000000000000007,quota,mblk_io_submit,errors=continue,errors=continue,data_err=ignore,delalloc,jqfmt=vfsold,norecovery,errors=continue,journal_ioprio=0x0000000000000001,,errors=continue
[  292.742830][ T3430] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  292.754557][ T5210] FAULT_INJECTION: forcing a failure.
[  292.754557][ T5210] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  292.767961][ T3430] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  292.778044][ T3430] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  292.787452][ T5210] CPU: 0 PID: 5210 Comm: syz.4.1516 Not tainted 5.10.218-syzkaller-00638-g3feee789f446 #0
[  292.797534][ T5210] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  292.807415][ T5210] Call Trace:
[  292.810567][ T5210]  dump_stack_lvl+0x1e2/0x24b
[  292.815085][ T5210]  ? bfq_pos_tree_add_move+0x43b/0x43b
[  292.820371][ T5210]  dump_stack+0x15/0x17
[  292.824360][ T5210]  should_fail+0x3c6/0x510
[  292.828622][ T5210]  should_fail_usercopy+0x1a/0x20
[  292.833482][ T5210]  _copy_from_user+0x20/0xd0
[  292.837993][ T5210]  __se_sys_bpf+0x761c/0x11cb0
[  292.842681][ T5210]  ? stack_trace_snprint+0xf0/0xf0
[  292.847639][ T5210]  ? kmem_cache_free+0xa9/0x1e0
[  292.852327][ T5210]  ? kmem_cache_free+0xa9/0x1e0
[  292.857011][ T5210]  ? kasan_set_track+0x5d/0x70
[  292.861597][ T5210]  ? kasan_set_track+0x4b/0x70
[  292.866202][ T5210]  ? kasan_set_free_info+0x23/0x40
[  292.871196][ T5210]  ? ____kasan_slab_free+0x121/0x160
[  292.876265][ T5210]  ? __kasan_slab_free+0x11/0x20
[  292.881055][ T5210]  ? __x64_sys_bpf+0x90/0x90
[  292.885473][ T5210]  ? do_sys_openat2+0x5e1/0x6f0
[  292.890156][ T5210]  ? __x64_sys_openat+0x243/0x290
[  292.895022][ T5210]  ? do_syscall_64+0x34/0x70
[  292.899551][ T5210]  ? entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  292.905454][ T5210]  ? _kstrtoull+0x3a0/0x4a0
[  292.909792][ T5210]  ? kstrtouint_from_user+0x20a/0x2a0
[  292.915088][ T5210]  ? kstrtol_from_user+0x310/0x310
[  292.920128][ T5210]  ? memset+0x35/0x40
[  292.923935][ T5210]  ? __fsnotify_parent+0x4b9/0x6c0
[  292.928895][ T5210]  ? __fsnotify_update_child_dentry_flags+0x2b0/0x2b0
[  292.935480][ T5210]  ? proc_fail_nth_write+0x20b/0x290
[  292.940606][ T5210]  ? proc_fail_nth_read+0x210/0x210
[  292.945643][ T5210]  ? security_file_permission+0x86/0xb0
[  292.951030][ T5210]  ? rw_verify_area+0x1c3/0x360
[  292.955707][ T5210]  ? slab_free_freelist_hook+0xc0/0x190
[  292.961092][ T5210]  ? preempt_count_add+0x92/0x1a0
[  292.966043][ T5210]  ? vfs_write+0x854/0xe70
[  292.970290][ T5210]  ? kernel_write+0x3d0/0x3d0
[  292.974802][ T5210]  ? __kasan_check_write+0x14/0x20
[  292.979749][ T5210]  ? mutex_lock+0xa5/0x110
[  292.984004][ T5210]  ? mutex_trylock+0xa0/0xa0
[  292.988446][ T5210]  ? __kasan_check_write+0x14/0x20
[  292.993378][ T5210]  ? fput_many+0x160/0x1b0
[  292.997642][ T5210]  ? debug_smp_processor_id+0x17/0x20
[  293.002841][ T5210]  __x64_sys_bpf+0x7b/0x90
[  293.007085][ T5210]  do_syscall_64+0x34/0x70
[  293.011354][ T5210]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  293.017064][ T5210] RIP: 0033:0x7f0893b13bd9
[  293.021430][ T5210] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  293.040955][ T5210] RSP: 002b:00007f0892d95048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  293.049211][ T5210] RAX: ffffffffffffffda RBX: 00007f0893ca1f60 RCX: 00007f0893b13bd9
[  293.057001][ T5210] RDX: 0000000000000020 RSI: 0000000020000180 RDI: 0000000000000002
[  293.064821][ T5210] RBP: 00007f0892d950a0 R08: 0000000000000000 R09: 0000000000000000
[  293.072632][ T5210] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  293.080468][ T5210] R13: 000000000000000b R14: 00007f0893ca1f60 R15: 00007fffb97335e8
[  293.097908][ T3430] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  293.120816][ T3430] usb 4-1: config 0 descriptor??
[  293.135484][   T24] kauditd_printk_skb: 104 callbacks suppressed
[  293.135519][   T24] audit: type=1326 audit(2000000116.043:1981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5211 comm="syz.1.1517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6abeb82bd9 code=0x7ffc0000
[  293.175342][ T3430] hub 4-1:0.0: USB hub found
[  293.198308][   T24] audit: type=1326 audit(2000000116.080:1982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5211 comm="syz.1.1517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f6abeb82bd9 code=0x7ffc0000
[  293.226966][ T5214] device pim6reg1 entered promiscuous mode
[  293.242606][   T24] audit: type=1326 audit(2000000116.080:1983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5211 comm="syz.1.1517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6abeb82bd9 code=0x7ffc0000
[  293.266731][   T24] audit: type=1326 audit(2000000116.080:1984): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5211 comm="syz.1.1517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f6abeb849f7 code=0x7ffc0000
[  293.290680][   T24] audit: type=1326 audit(2000000116.080:1985): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5211 comm="syz.1.1517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7f6abeb8496c code=0x7ffc0000
[  293.324716][   T24] audit: type=1326 audit(2000000116.080:1986): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5211 comm="syz.1.1517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f6abeb848a4 code=0x7ffc0000
[  293.364092][ T5216] SELinux: security_context_str_to_sid(u) failed for (dev tmpfs, type tmpfs) errno=-22
[  293.375243][   T24] audit: type=1326 audit(2000000116.080:1987): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5211 comm="syz.1.1517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f6abeb848a4 code=0x7ffc0000
[  293.454332][   T24] audit: type=1326 audit(2000000116.080:1988): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5211 comm="syz.1.1517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f6abeb8190a code=0x7ffc0000
[  293.454383][   T24] audit: type=1326 audit(2000000116.080:1989): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5211 comm="syz.1.1517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6abeb82bd9 code=0x7ffc0000
[  293.454434][   T24] audit: type=1326 audit(2000000116.080:1990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5211 comm="syz.1.1517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f6abeb82bd9 code=0x7ffc0000
[  293.591725][ T3444] snd-usb-audio: probe of 1-1:0.2 failed with error -12
[  293.602994][ T3444] usb 1-1: USB disconnect, device number 25
[  294.101980][ T5219] EXT4-fs (loop3): Ignoring removed bh option
[  294.495667][ T5219] EXT4-fs (loop3): mounted filesystem without journal. Opts: init_itable=0x0000000000000003,delalloc,stripe=0x0000000000000020,norecovery,lazytime,lazytime,nodelalloc,nolazytime,bh,,errors=continue
[  294.603894][ T3430] hub 4-1:0.0: config failed, can't read hub descriptor (err -22)
[  294.673492][ T5240] EXT4-fs (loop0): Ignoring removed mblk_io_submit option
[  294.683843][ T5240] EXT4-fs (loop0): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  294.702205][ T5240] EXT4-fs error (device loop0): ext4_orphan_get:1391: inode #15: comm syz.0.1525: casefold flag without casefold feature
[  294.710631][ T5251] device pim6reg1 entered promiscuous mode
[  294.715882][ T5240] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: inode #12: comm syz.0.1525: missing EA_INODE flag
[  294.723785][ T3430] usbhid 4-1:0.0: can't add hid device: -71
[  294.732920][ T5240] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.1525: error while reading EA inode 12 err=-117
[  294.739535][ T3430] usbhid: probe of 4-1:0.0 failed with error -71
[  294.750627][ T5240] EXT4-fs (loop0): 1 orphan inode deleted
[  294.762039][ T5240] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_nolock,journal_dev=0x0000000000000007,quota,mblk_io_submit,errors=continue,errors=continue,data_err=ignore,delalloc,jqfmt=vfsold,norecovery,errors=continue,journal_ioprio=0x0000000000000001,,errors=continue
[  294.807220][ T3430] usb 4-1: USB disconnect, device number 27
[  294.918156][   T25] usb 2-1: new high-speed USB device number 31 using dummy_hcd
[  295.221409][   T25] usb 2-1: device descriptor read/64, error -71
[  295.665547][   T25] usb 2-1: device descriptor read/64, error -71
[  295.763154][ T3444] usb 1-1: new high-speed USB device number 26 using dummy_hcd
[  295.958119][   T25] usb 2-1: new high-speed USB device number 32 using dummy_hcd
[  295.994797][ T5282] device pim6reg1 entered promiscuous mode
[  296.003259][ T5279] EXT4-fs (loop4): Ignoring removed mblk_io_submit option
[  296.010540][ T5279] EXT4-fs (loop4): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  296.025926][ T5279] EXT4-fs error (device loop4): ext4_orphan_get:1391: inode #15: comm syz.4.1540: casefold flag without casefold feature
[  296.039632][ T5279] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: inode #12: comm syz.4.1540: missing EA_INODE flag
[  296.051728][ T5279] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.1540: error while reading EA inode 12 err=-117
[  296.064149][ T3444] usb 1-1: Using ep0 maxpacket: 16
[  296.064544][ T5279] EXT4-fs (loop4): 1 orphan inode deleted
[  296.075022][ T5279] EXT4-fs (loop4): mounted filesystem without journal. Opts: dioread_nolock,journal_dev=0x0000000000000007,quota,mblk_io_submit,errors=continue,errors=continue,data_err=ignore,delalloc,jqfmt=vfsold,norecovery,errors=continue,journal_ioprio=0x0000000000000001,,errors=continue
[  296.218589][ T3444] usb 1-1: config 0 has an invalid interface number: 2 but max is 0
[  296.227310][ T3444] usb 1-1: config 0 has no interface number 0
[  296.236582][ T3444] usb 1-1: config 0 interface 2 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0
[  296.246867][ T3444] usb 1-1: config 0 interface 2 altsetting 0 bulk endpoint 0xB has invalid maxpacket 0
[  296.250776][   T25] usb 2-1: device descriptor read/64, error -71
[  296.391665][ T3444] usb 1-1: New USB device found, idVendor=0582, idProduct=0005, bcdDevice= 0.88
[  296.401406][ T3444] usb 1-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[  296.409540][ T3444] usb 1-1: Product: syz
[  296.413647][ T3444] usb 1-1: SerialNumber: syz
[  296.419797][ T3444] usb 1-1: config 0 descriptor??
[  296.456460][ T3430] usb 3-1: new high-speed USB device number 39 using dummy_hcd
[  296.532524][   T20] usb 5-1: new high-speed USB device number 33 using dummy_hcd
[  296.684005][   T25] usb 2-1: device descriptor read/64, error -71
[  296.738158][ T3430] usb 3-1: Using ep0 maxpacket: 32
[  296.792352][   T20] usb 5-1: Using ep0 maxpacket: 8
[  296.814166][   T25] usb usb2-port1: attempt power cycle
[  296.890035][ T3430] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  296.901251][ T3430] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  296.910927][ T3430] usb 3-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  296.919962][ T3430] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  296.922476][   T20] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  296.930010][ T3430] usb 3-1: config 0 descriptor??
[  296.944505][   T20] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  296.954266][   T20] usb 5-1: New USB device found, idVendor=05ac, idProduct=024f, bcdDevice= 0.00
[  296.963181][   T20] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  296.972389][   T20] usb 5-1: config 0 descriptor??
[  296.988939][ T3430] hub 3-1:0.0: USB hub found
[  297.258375][   T25] usb 2-1: new high-speed USB device number 33 using dummy_hcd
[  297.301589][ T3430] hub 3-1:0.0: config failed, can't read hub descriptor (err -22)
[  297.442424][ T3430] usbhid 3-1:0.0: can't add hid device: -71
[  297.448468][ T3430] usbhid: probe of 3-1:0.0 failed with error -71
[  297.453268][   T25] usb 2-1: device descriptor read/8, error -71
[  297.477873][ T5297] ./bus: Can't open blockdev
[  297.483800][ T5297] udc-core: couldn't find an available UDC or it's busy
[  297.491222][ T5297] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  297.491634][ T3430] usb 3-1: USB disconnect, device number 39
[  297.519805][   T20] apple 0003:05AC:024F.0021: item fetching failed at offset 5/7
[  297.527762][   T20] apple 0003:05AC:024F.0021: parse failed
[  297.533773][   T20] apple: probe of 0003:05AC:024F.0021 failed with error -22
[  297.648232][  T308] usb 4-1: new high-speed USB device number 28 using dummy_hcd
[  297.745764][   T25] usb 2-1: device descriptor read/8, error -71
[  297.926582][ T5319] device pim6reg1 entered promiscuous mode
[  297.946440][ T3430] usb 5-1: USB disconnect, device number 33
[  298.149168][  T308] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  298.472568][  T308] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  298.522483][  T308] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  298.646481][  T308] usb 4-1: Product: syz
[  298.713437][  T308] usb 4-1: Manufacturer: syz
[  298.782729][  T308] usb 4-1: SerialNumber: syz
[  298.947349][ T3444] snd-usb-audio: probe of 1-1:0.2 failed with error -12
[  298.956015][ T3444] usb 1-1: USB disconnect, device number 26
[  299.498250][ T5327] F2FS-fs (loop1): Found nat_bits in checkpoint
[  299.524044][ T5348] FAT-fs (loop4): Directory bread(block 64) failed
[  299.530899][ T5348] FAT-fs (loop4): Directory bread(block 65) failed
[  299.537427][   T25] usb 3-1: new high-speed USB device number 40 using dummy_hcd
[  299.545613][ T5348] FAT-fs (loop4): Directory bread(block 66) failed
[  299.551986][ T5348] FAT-fs (loop4): Directory bread(block 67) failed
[  299.558607][ T5348] FAT-fs (loop4): Directory bread(block 68) failed
[  299.564975][ T5348] FAT-fs (loop4): Directory bread(block 69) failed
[  299.571683][ T5348] FAT-fs (loop4): Directory bread(block 70) failed
[  299.578151][ T5348] FAT-fs (loop4): Directory bread(block 71) failed
[  299.584780][ T5348] FAT-fs (loop4): Directory bread(block 72) failed
[  299.591493][ T5348] FAT-fs (loop4): Directory bread(block 73) failed
[  299.627770][ T5327] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  299.665016][ T5327] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1557'.
[  299.698305][ T3340] attempt to access beyond end of device
[  299.698305][ T3340] loop1: rw=2049, want=45104, limit=40427
[  299.717591][ T3444] usb 1-1: new high-speed USB device number 27 using dummy_hcd
[  299.804314][   T25] usb 3-1: Using ep0 maxpacket: 32
[  299.912704][ T3430] usb 5-1: new high-speed USB device number 34 using dummy_hcd
[  299.956175][   T25] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  299.967731][   T25] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  299.977330][   T25] usb 3-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  299.977780][ T3444] usb 1-1: Using ep0 maxpacket: 16
[  299.986532][   T25] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  300.009207][   T25] usb 3-1: config 0 descriptor??
[  300.054640][   T25] hub 3-1:0.0: USB hub found
[  300.118564][ T3444] usb 1-1: config 0 has an invalid interface number: 2 but max is 0
[  300.126498][ T3444] usb 1-1: config 0 has no interface number 0
[  300.132501][ T3444] usb 1-1: config 0 interface 2 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0
[  300.142175][ T3444] usb 1-1: config 0 interface 2 altsetting 0 bulk endpoint 0xB has invalid maxpacket 0
[  300.281009][  T308] cdc_ncm 4-1:1.0: bind() failure
[  300.281193][ T3444] usb 1-1: New USB device found, idVendor=0582, idProduct=0005, bcdDevice= 0.88
[  300.298926][ T3444] usb 1-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[  300.309680][ T3430] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  300.313600][  T308] cdc_ncm: probe of 4-1:1.1 failed with error -71
[  300.327400][   T20] usb 2-1: new high-speed USB device number 35 using dummy_hcd
[  300.328041][ T3444] usb 1-1: Product: syz
[  300.344909][ T3444] usb 1-1: SerialNumber: syz
[  300.351196][ T3444] usb 1-1: config 0 descriptor??
[  300.357233][  T308] cdc_mbim: probe of 4-1:1.1 failed with error -71
[  300.366566][  T308] usb 4-1: USB disconnect, device number 28
[  300.411237][   T25] hub 3-1:0.0: config failed, can't read hub descriptor (err -22)
[  300.508555][ T3430] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  300.517730][ T3430] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  300.525670][ T3430] usb 5-1: Product: syz
[  300.529877][ T3430] usb 5-1: Manufacturer: syz
[  300.534346][ T3430] usb 5-1: SerialNumber: syz
[  300.544836][   T25] usbhid 3-1:0.0: can't add hid device: -71
[  300.550839][   T25] usbhid: probe of 3-1:0.0 failed with error -71
[  300.585133][   T25] usb 3-1: USB disconnect, device number 40
[  300.616804][   T20] usb 2-1: Using ep0 maxpacket: 16
[  300.768779][   T20] usb 2-1: config 0 has an invalid interface number: 2 but max is 0
[  300.776659][   T20] usb 2-1: config 0 has no interface number 0
[  300.783988][   T20] usb 2-1: config 0 interface 2 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0
[  300.793734][   T20] usb 2-1: config 0 interface 2 altsetting 0 bulk endpoint 0xB has invalid maxpacket 0
[  300.898001][ T5362] bridge0: port 1(bridge_slave_0) entered blocking state
[  300.905043][ T5362] bridge0: port 1(bridge_slave_0) entered disabled state
[  300.914673][ T5362] device bridge_slave_0 entered promiscuous mode
[  300.932985][   T20] usb 2-1: New USB device found, idVendor=0582, idProduct=0005, bcdDevice= 0.88
[  300.942516][   T20] usb 2-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[  300.950493][   T20] usb 2-1: Product: syz
[  300.955043][ T5362] bridge0: port 2(bridge_slave_1) entered blocking state
[  300.962267][   T20] usb 2-1: SerialNumber: syz
[  300.968057][ T5362] bridge0: port 2(bridge_slave_1) entered disabled state
[  300.983665][   T20] usb 2-1: config 0 descriptor??
[  300.989854][ T5362] device bridge_slave_1 entered promiscuous mode
[  301.207931][  T308] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  301.218137][  T308] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  301.235563][ T2021] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  301.244052][ T2021] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  301.250871][ T5375] SELinux: security_context_str_to_sid(u) failed for (dev tmpfs, type tmpfs) errno=-22
[  301.253743][ T2021] bridge0: port 1(bridge_slave_0) entered blocking state
[  301.268316][ T2021] bridge0: port 1(bridge_slave_0) entered forwarding state
[  301.277449][ T2021] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  301.286396][ T2021] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  301.294897][ T2021] bridge0: port 2(bridge_slave_1) entered blocking state
[  301.301821][ T2021] bridge0: port 2(bridge_slave_1) entered forwarding state
[  301.314519][  T308] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  301.491629][  T308] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  301.499914][  T308] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  301.508513][  T308] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  301.517221][  T308] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  301.537102][ T5362] device veth0_vlan entered promiscuous mode
[  301.570476][  T602] device bridge_slave_1 left promiscuous mode
[  301.583845][  T602] bridge0: port 2(bridge_slave_1) entered disabled state
[  301.763148][  T602] device bridge_slave_0 left promiscuous mode
[  301.771153][  T602] bridge0: port 1(bridge_slave_0) entered disabled state
[  301.805001][  T602] device veth1_macvtap left promiscuous mode
[  301.811464][  T602] device veth0_vlan left promiscuous mode
[  302.384075][ T3430] cdc_ncm 5-1:1.0: MAC-Address: 42:42:42:42:42:42
[  302.386569][ T5362] device veth1_macvtap entered promiscuous mode
[  302.397202][ T3430] cdc_ncm 5-1:1.0: dwNtbInMaxSize=16 is too small. Using 2048
[  302.404978][  T290] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  302.413580][  T290] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  302.421817][ T3430] cdc_ncm 5-1:1.0: setting rx_max = 2048
[  302.428049][  T290] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  302.436088][  T290] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  302.444798][  T290] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  302.453280][  T290] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  302.462289][  T290] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  302.471017][  T290] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  302.478736][  T290] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  302.534633][ T3430] cdc_ncm 5-1:1.0: setting tx_max = 88
[  302.546183][ T3430] cdc_ncm 5-1:1.0 usb0: register 'cdc_ncm' at usb-dummy_hcd.4-1, CDC NCM, 42:42:42:42:42:42
[  302.574412][ T3430] usb 5-1: USB disconnect, device number 34
[  302.588481][ T3430] cdc_ncm 5-1:1.0 usb0: unregister 'cdc_ncm' usb-dummy_hcd.4-1, CDC NCM
[  302.644439][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  302.653413][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  302.667414][ T3444] snd-usb-audio: probe of 1-1:0.2 failed with error -12
[  302.693024][ T2021] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  302.714311][ T2021] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  303.399263][ T3444] usb 1-1: USB disconnect, device number 27
[  303.511463][   T20] snd-usb-audio: probe of 2-1:0.2 failed with error -12
[  303.544861][   T20] usb 2-1: USB disconnect, device number 35
[  303.569782][ T5392] device pim6reg1 entered promiscuous mode
[  303.787197][ T5398] SELinux: security_context_str_to_sid(u) failed for (dev tmpfs, type tmpfs) errno=-22
[  304.594331][   T25] usb 4-1: new high-speed USB device number 29 using dummy_hcd
[  305.161885][   T24] kauditd_printk_skb: 147 callbacks suppressed
[  305.161923][   T24] audit: type=1326 audit(2000000127.147:2138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5409 comm="syz.4.1580" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0893b13bd9 code=0x7ffc0000
[  305.254113][   T25] usb 4-1: Using ep0 maxpacket: 32
[  305.273263][   T24] audit: type=1326 audit(2000000127.184:2139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5409 comm="syz.4.1580" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0893b13bd9 code=0x7ffc0000
[  305.315636][ T5412] EXT4-fs (loop4): Ignoring removed mblk_io_submit option
[  305.352900][ T5412] EXT4-fs (loop4): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  305.364201][   T24] audit: type=1326 audit(2000000127.184:2140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5409 comm="syz.4.1580" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f0893b13bd9 code=0x7ffc0000
[  305.410649][ T5412] EXT4-fs error (device loop4): ext4_orphan_get:1391: inode #15: comm syz.4.1580: casefold flag without casefold feature
[  305.433026][ T5412] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: inode #12: comm syz.4.1580: missing EA_INODE flag
[  305.448965][   T25] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  305.469426][   T25] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  305.481760][ T5412] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.1580: error while reading EA inode 12 err=-117
[  305.495054][   T25] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  305.503131][   T24] audit: type=1326 audit(2000000127.184:2141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5409 comm="syz.4.1580" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0893b13bd9 code=0x7ffc0000
[  305.507976][   T25] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  305.538468][   T25] usb 4-1: config 0 descriptor??
[  305.558906][ T5412] EXT4-fs (loop4): 1 orphan inode deleted
[  305.564522][ T5412] EXT4-fs (loop4): mounted filesystem without journal. Opts: dioread_nolock,journal_dev=0x0000000000000007,quota,mblk_io_submit,errors=continue,errors=continue,data_err=ignore,delalloc,jqfmt=vfsold,norecovery,errors=continue,journal_ioprio=0x0000000000000001,,errors=continue
[  305.589857][   T24] audit: type=1326 audit(2000000127.184:2142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5409 comm="syz.4.1580" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0893b13bd9 code=0x7ffc0000
[  305.595704][   T25] hub 4-1:0.0: USB hub found
[  305.636218][ T5432] EXT4-fs (loop1): Ignoring removed mblk_io_submit option
[  305.659330][   T24] audit: type=1326 audit(2000000127.184:2143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5409 comm="syz.4.1580" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f0893b13bd9 code=0x7ffc0000
[  305.670764][ T5432] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  305.687635][   T24] audit: type=1326 audit(2000000127.184:2144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5409 comm="syz.4.1580" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0893b13bd9 code=0x7ffc0000
[  305.719022][   T24] audit: type=1326 audit(2000000127.184:2145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5409 comm="syz.4.1580" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0893b13bd9 code=0x7ffc0000
[  305.761794][   T24] audit: type=1326 audit(2000000127.184:2146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5409 comm="syz.4.1580" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0893b13bd9 code=0x7ffc0000
[  305.814600][ T5432] EXT4-fs error (device loop1): ext4_orphan_get:1391: inode #15: comm syz.1.1585: casefold flag without casefold feature
[  305.843052][   T24] audit: type=1326 audit(2000000127.184:2147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5409 comm="syz.4.1580" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0893b13bd9 code=0x7ffc0000
[  305.942815][ T5432] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: inode #12: comm syz.1.1585: missing EA_INODE flag
[  305.975297][ T5445] device pim6reg1 entered promiscuous mode
[  305.999269][ T5401] EXT4-fs (loop3): Ignoring removed bh option
[  306.037804][ T5432] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz.1.1585: error while reading EA inode 12 err=-117
[  306.065057][ T5401] EXT4-fs (loop3): mounted filesystem without journal. Opts: init_itable=0x0000000000000003,delalloc,stripe=0x0000000000000020,norecovery,lazytime,lazytime,nodelalloc,nolazytime,bh,,errors=continue
[  306.106720][ T5432] EXT4-fs (loop1): 1 orphan inode deleted
[  306.124380][ T5432] EXT4-fs (loop1): mounted filesystem without journal. Opts: dioread_nolock,journal_dev=0x0000000000000007,quota,mblk_io_submit,errors=continue,errors=continue,data_err=ignore,delalloc,jqfmt=vfsold,norecovery,errors=continue,journal_ioprio=0x0000000000000001,,errors=continue
[  306.200640][ T5437] F2FS-fs (loop0): invalid crc value
[  306.239822][   T25] hub 4-1:0.0: config failed, can't read hub descriptor (err -22)
[  306.259100][ T5437] F2FS-fs (loop0): Found nat_bits in checkpoint
[  306.359028][   T25] usbhid 4-1:0.0: can't add hid device: -71
[  306.365055][   T25] usbhid: probe of 4-1:0.0 failed with error -71
[  306.377003][ T5437] F2FS-fs (loop0): Cannot turn on quotas: -2 on 1
[  306.404063][ T5437] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  306.413908][   T25] usb 4-1: USB disconnect, device number 29
[  306.420834][ T5451] overlayfs: statfs failed on './file0'
[  306.440149][ T5437] syz.0.1587[5437] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  306.440272][ T5437] syz.0.1587[5437] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  306.505927][ T3030] attempt to access beyond end of device
[  306.505927][ T3030] loop0: rw=524288, want=45072, limit=40427
[  306.532647][ T3030] attempt to access beyond end of device
[  306.532647][ T3030] loop0: rw=0, want=45072, limit=40427
[  306.650778][  T602] attempt to access beyond end of device
[  306.650778][  T602] loop0: rw=2049, want=41000, limit=40427
[  306.858370][ T2022] usb 3-1: new high-speed USB device number 41 using dummy_hcd
[  307.025894][ T5474] SELinux: security_context_str_to_sid(u) failed for (dev tmpfs, type tmpfs) errno=-22
[  307.236507][ T2022] usb 3-1: Using ep0 maxpacket: 16
[  307.388958][ T2022] usb 3-1: config 1 has too many interfaces: 255, using maximum allowed: 32
[  307.489849][ T2022] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 255
[  307.736647][ T2022] usb 3-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=ee.06
[  307.779948][ T2022] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  307.843922][ T2022] usb 3-1: Product: syz
[  307.883776][ T2022] usb 3-1: Manufacturer: syz
[  307.988821][ T2022] usb 3-1: SerialNumber: syz
[  308.030095][  T602] device bridge_slave_1 left promiscuous mode
[  308.038613][  T602] bridge0: port 2(bridge_slave_1) entered disabled state
[  308.060767][  T602] device bridge_slave_0 left promiscuous mode
[  308.066837][  T602] bridge0: port 1(bridge_slave_0) entered disabled state
[  308.117156][  T602] device veth1_macvtap left promiscuous mode
[  308.123071][  T602] device veth0_vlan left promiscuous mode
[  308.349674][ T5482] device pim6reg1 entered promiscuous mode
[  308.693891][ T2022] usb 3-1: USB disconnect, device number 41
[  308.699777][ T5493] overlayfs: statfs failed on './file0'
[  308.748946][ T5478] bridge0: port 1(bridge_slave_0) entered blocking state
[  308.763816][ T5478] bridge0: port 1(bridge_slave_0) entered disabled state
[  308.772084][ T5478] device bridge_slave_0 entered promiscuous mode
[  308.801915][ T5478] bridge0: port 2(bridge_slave_1) entered blocking state
[  308.846481][ T5478] bridge0: port 2(bridge_slave_1) entered disabled state
[  308.856144][ T5478] device bridge_slave_1 entered promiscuous mode
[  309.055752][ T5478] bridge0: port 2(bridge_slave_1) entered blocking state
[  309.062727][ T5478] bridge0: port 2(bridge_slave_1) entered forwarding state
[  309.070010][ T5478] bridge0: port 1(bridge_slave_0) entered blocking state
[  309.076935][ T5478] bridge0: port 1(bridge_slave_0) entered forwarding state
[  309.141813][ T3449] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  309.150734][ T3449] bridge0: port 1(bridge_slave_0) entered disabled state
[  309.158841][ T3449] bridge0: port 2(bridge_slave_1) entered disabled state
[  309.195839][ T3449] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  309.205645][ T3449] bridge0: port 1(bridge_slave_0) entered blocking state
[  309.212550][ T3449] bridge0: port 1(bridge_slave_0) entered forwarding state
[  309.234387][ T3449] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  309.246011][ T3449] bridge0: port 2(bridge_slave_1) entered blocking state
[  309.253017][ T3449] bridge0: port 2(bridge_slave_1) entered forwarding state
[  309.329161][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  309.361957][ T2022] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  309.416119][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  309.449334][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  309.464541][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  309.475865][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  309.486857][ T5478] device veth0_vlan entered promiscuous mode
[  309.551280][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  309.564023][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  309.577869][ T5478] device veth1_macvtap entered promiscuous mode
[  309.641687][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  309.657559][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  309.668029][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  309.748011][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  309.761825][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  310.044902][ T5510] F2FS-fs (loop1): invalid crc value
[  310.072429][ T5510] F2FS-fs (loop1): Found nat_bits in checkpoint
[  310.502847][ T5543] FAT-fs (loop0): bogus logical sector size 0
[  310.508941][ T5543] FAT-fs (loop0): Can't find a valid FAT filesystem
[  310.933178][ T5510] F2FS-fs (loop1): Cannot turn on quotas: -2 on 1
[  310.959625][ T5510] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  311.011448][ T5510] syz.1.1611[5510] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  311.011575][ T5510] syz.1.1611[5510] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  311.023533][ T3449] usb 5-1: new high-speed USB device number 35 using dummy_hcd
[  311.042258][ T3430] usb 3-1: new high-speed USB device number 42 using dummy_hcd
[  311.080609][ T3340] attempt to access beyond end of device
[  311.080609][ T3340] loop1: rw=524288, want=45072, limit=40427
[  311.102785][ T3340] attempt to access beyond end of device
[  311.102785][ T3340] loop1: rw=0, want=45072, limit=40427
[  311.139941][   T24] kauditd_printk_skb: 97 callbacks suppressed
[  311.139979][   T24] audit: type=1326 audit(2000000132.666:2245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5549 comm="syz.0.1624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3cd278ebd9 code=0x7ffc0000
[  311.170298][  T602] attempt to access beyond end of device
[  311.170298][  T602] loop1: rw=2049, want=40992, limit=40427
[  311.194691][   T24] audit: type=1326 audit(2000000132.694:2246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5549 comm="syz.0.1624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f3cd278ebd9 code=0x7ffc0000
[  311.219338][   T24] audit: type=1326 audit(2000000132.694:2247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5549 comm="syz.0.1624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3cd278ebd9 code=0x7ffc0000
[  311.257902][   T24] audit: type=1326 audit(2000000132.694:2248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5549 comm="syz.0.1624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f3cd278ebd9 code=0x7ffc0000
[  311.292657][   T24] audit: type=1326 audit(2000000132.694:2249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5549 comm="syz.0.1624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3cd278ebd9 code=0x7ffc0000
[  311.310175][ T3449] usb 5-1: Using ep0 maxpacket: 16
[  311.353515][   T24] audit: type=1326 audit(2000000132.694:2250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5549 comm="syz.0.1624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f3cd278ebd9 code=0x7ffc0000
[  311.403248][   T24] audit: type=1326 audit(2000000132.694:2251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5549 comm="syz.0.1624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3cd278ebd9 code=0x7ffc0000
[  311.429561][ T3430] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  311.442438][   T24] audit: type=1326 audit(2000000132.694:2252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5549 comm="syz.0.1624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f3cd278ebd9 code=0x7ffc0000
[  311.451172][ T3449] usb 5-1: config 0 has an invalid interface number: 2 but max is 0
[  311.473756][   T24] audit: type=1326 audit(2000000132.694:2253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5549 comm="syz.0.1624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3cd278ebd9 code=0x7ffc0000
[  311.476907][ T3430] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  311.506772][   T24] audit: type=1326 audit(2000000132.694:2254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5549 comm="syz.0.1624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=328 compat=0 ip=0x7f3cd278ebd9 code=0x7ffc0000
[  311.526943][ T3449] usb 5-1: config 0 has no interface number 0
[  311.535937][ T3449] usb 5-1: config 0 interface 2 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0
[  311.559430][ T3430] usb 3-1: New USB device found, idVendor=1fd2, idProduct=6007, bcdDevice= 0.00
[  311.568334][ T3430] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  311.576277][ T3449] usb 5-1: config 0 interface 2 altsetting 0 bulk endpoint 0xB has invalid maxpacket 0
[  311.599794][ T3430] usb 3-1: config 0 descriptor??
[  311.711381][ T3449] usb 5-1: New USB device found, idVendor=0582, idProduct=0005, bcdDevice= 0.88
[  311.720286][ T3449] usb 5-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[  311.743549][ T3449] usb 5-1: Product: syz
[  311.747578][ T3449] usb 5-1: SerialNumber: syz
[  311.768664][ T3449] usb 5-1: config 0 descriptor??
[  311.925262][ T5557] bridge0: port 1(bridge_slave_0) entered blocking state
[  311.932269][ T3444] usb 1-1: new high-speed USB device number 28 using dummy_hcd
[  311.943129][ T5557] bridge0: port 1(bridge_slave_0) entered disabled state
[  311.951687][ T5557] device bridge_slave_0 entered promiscuous mode
[  311.967539][ T5557] bridge0: port 2(bridge_slave_1) entered blocking state
[  311.974513][ T5557] bridge0: port 2(bridge_slave_1) entered disabled state
[  311.983185][ T5557] device bridge_slave_1 entered promiscuous mode
[  312.123819][    T7] device bridge_slave_1 left promiscuous mode
[  312.129872][    T7] bridge0: port 2(bridge_slave_1) entered disabled state
[  312.160508][    T7] device bridge_slave_0 left promiscuous mode
[  312.166836][    T7] bridge0: port 1(bridge_slave_0) entered disabled state
[  312.177323][    T7] device veth1_macvtap left promiscuous mode
[  312.183241][    T7] device veth0_vlan left promiscuous mode
[  312.198586][ T3444] usb 1-1: Using ep0 maxpacket: 8
[  312.328732][ T3444] usb 1-1: config 0 has an invalid descriptor of length 11, skipping remainder of the config
[  312.349469][ T3444] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 5
[  312.380358][ T3444] usb 1-1: New USB device found, idVendor=1e7d, idProduct=2c24, bcdDevice= 0.00
[  312.398934][ T3444] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  312.420035][ T3444] usb 1-1: config 0 descriptor??
[  312.460037][ T3444] usbhid 1-1:0.0: couldn't find an input interrupt endpoint
[  312.523415][ T3430] hid-multitouch 0003:1FD2:6007.0022: hidraw0: USB HID v0.00 Device [HID 1fd2:6007] on usb-dummy_hcd.2-1/input0
[  312.546965][ T5557] bridge0: port 2(bridge_slave_1) entered blocking state
[  312.553887][ T5557] bridge0: port 2(bridge_slave_1) entered forwarding state
[  312.561109][ T5557] bridge0: port 1(bridge_slave_0) entered blocking state
[  312.568027][ T5557] bridge0: port 1(bridge_slave_0) entered forwarding state
[  312.634085][ T3430] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  312.642550][ T3430] bridge0: port 1(bridge_slave_0) entered disabled state
[  312.651369][ T3430] bridge0: port 2(bridge_slave_1) entered disabled state
[  312.669734][ T3444] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  312.686865][ T3444] bridge0: port 1(bridge_slave_0) entered blocking state
[  312.693793][ T3444] bridge0: port 1(bridge_slave_0) entered forwarding state
[  312.709303][ T3444] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  312.717743][ T3444] bridge0: port 2(bridge_slave_1) entered blocking state
[  312.724689][ T3444] bridge0: port 2(bridge_slave_1) entered forwarding state
[  312.760330][ T3444] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  312.787137][ T3443] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  312.840551][  T290] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  312.908669][ T5557] device veth0_vlan entered promiscuous mode
[  312.926108][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  312.934951][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  312.943460][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  313.000820][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  313.012586][ T5557] device veth1_macvtap entered promiscuous mode
[  313.028555][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  313.039728][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  313.059713][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  313.079256][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  313.295072][ T3449] snd-usb-audio: probe of 5-1:0.2 failed with error -12
[  313.315193][ T3449] usb 5-1: USB disconnect, device number 35
[  313.934494][ T3449] usb 5-1: new high-speed USB device number 36 using dummy_hcd
[  313.955560][    T5] usb 3-1: USB disconnect, device number 42
[  314.020205][ T5570] F2FS-fs (loop1): Invalid segment/section count (31, 24 x 1)
[  314.028791][ T5570] F2FS-fs (loop1): Can't find valid F2FS filesystem in 2th superblock
[  314.043146][ T5570] F2FS-fs (loop1): invalid crc value
[  314.077765][ T5570] F2FS-fs (loop1): Found nat_bits in checkpoint
[  314.271985][ T5570] F2FS-fs (loop1): Try to recover 2th superblock, ret: 0
[  314.279158][ T5570] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  314.333127][ T3449] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  314.362816][ T3449] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  314.380854][ T3449] usb 5-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  314.395120][ T5557] attempt to access beyond end of device
[  314.395120][ T5557] loop1: rw=524288, want=45072, limit=40427
[  314.408552][ T3449] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  314.421260][ T5557] attempt to access beyond end of device
[  314.421260][ T5557] loop1: rw=0, want=45072, limit=40427
[  314.438269][ T3449] usb 5-1: config 0 descriptor??
[  314.518457][  T310] attempt to access beyond end of device
[  314.518457][  T310] loop1: rw=2049, want=45128, limit=40427
[  315.134972][ T2021] usb 1-1: USB disconnect, device number 28
[  315.227936][  T310] device bridge_slave_1 left promiscuous mode
[  315.242220][  T310] bridge0: port 2(bridge_slave_1) entered disabled state
[  315.251674][  T310] device bridge_slave_0 left promiscuous mode
[  315.258222][  T310] bridge0: port 1(bridge_slave_0) entered disabled state
[  315.268972][  T310] device veth1_macvtap left promiscuous mode
[  315.275154][  T310] device veth0_vlan left promiscuous mode
[  315.739737][ T5603] bridge0: port 1(bridge_slave_0) entered blocking state
[  315.760810][ T5603] bridge0: port 1(bridge_slave_0) entered disabled state
[  315.769385][ T5603] device bridge_slave_0 entered promiscuous mode
[  315.778294][ T5628] EXT4-fs error (device loop3): ext4_ext_check_inode:500: inode #15: comm syz.3.1655: pblk 0 bad header/extent: invalid eh_entries - magic f30a, entries 24833, max 4(4), depth 0(0)
[  315.797621][ T5603] bridge0: port 2(bridge_slave_1) entered blocking state
[  315.804614][ T5603] bridge0: port 2(bridge_slave_1) entered disabled state
[  315.813758][ T5603] device bridge_slave_1 entered promiscuous mode
[  315.820601][ T5628] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.1655: couldn't read orphan inode 15 (err -117)
[  315.865450][ T5628] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue
[  315.893181][ T5628] ext4 filesystem being mounted at /13/file0 supports timestamps until 2038 (0x7fffffff)
[  316.023264][ T2022] usb 1-1: new high-speed USB device number 29 using dummy_hcd
[  316.065185][ T5603] bridge0: port 2(bridge_slave_1) entered blocking state
[  316.072099][ T5603] bridge0: port 2(bridge_slave_1) entered forwarding state
[  316.079334][ T5603] bridge0: port 1(bridge_slave_0) entered blocking state
[  316.086223][ T5603] bridge0: port 1(bridge_slave_0) entered forwarding state
[  316.144016][   T52] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  316.145612][ T5636] SELinux: security_context_str_to_sid(u) failed for (dev tmpfs, type tmpfs) errno=-22
[  316.161147][   T52] bridge0: port 1(bridge_slave_0) entered disabled state
[  316.170936][   T52] bridge0: port 2(bridge_slave_1) entered disabled state
[  316.195688][ T5615] syz.2.1651[5615] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  316.195818][ T5615] syz.2.1651[5615] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  316.294390][ T3449] usb 5-1: string descriptor 0 read error: -71
[  316.354418][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  316.359265][ T3449] uclogic 0003:256C:006D.0023: failed retrieving string descriptor #200: -71
[  316.370552][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  316.386852][   T20] bridge0: port 1(bridge_slave_0) entered blocking state
[  316.393540][ T3449] uclogic 0003:256C:006D.0023: failed retrieving pen parameters: -71
[  316.394013][   T20] bridge0: port 1(bridge_slave_0) entered forwarding state
[  316.401999][ T3449] uclogic 0003:256C:006D.0023: failed probing pen v2 parameters: -71
[  316.410358][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  316.420901][ T3449] uclogic 0003:256C:006D.0023: failed probing parameters: -71
[  316.427867][   T20] bridge0: port 2(bridge_slave_1) entered blocking state
[  316.439887][   T20] bridge0: port 2(bridge_slave_1) entered forwarding state
[  316.454975][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  316.466581][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  316.485261][ T5644] fuse: Bad value for 'fd'
[  316.555175][ T2022] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  316.602995][ T2022] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  316.669995][ T2022] usb 1-1: New USB device found, idVendor=1fd2, idProduct=6007, bcdDevice= 0.00
[  316.682543][ T2022] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  316.735348][ T2021] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  316.770970][ T2022] usb 1-1: config 0 descriptor??
[  316.799332][ T2021] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  316.866926][ T2021] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  316.915764][ T5603] device veth0_vlan entered promiscuous mode
[  317.067504][ T3449] uclogic: probe of 0003:256C:006D.0023 failed with error -71
[  317.106022][   T52] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  317.117971][   T52] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  317.139166][ T5603] device veth1_macvtap entered promiscuous mode
[  317.148672][ T5647] overlayfs: failed to resolve './file0': -2
[  317.169633][   T52] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  317.181640][   T52] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  317.187601][ T3449] usb 5-1: USB disconnect, device number 36
[  317.218020][   T52] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  317.266013][ T2021] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  317.283932][ T2021] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  317.384994][ T5630] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
[  317.413996][ T5630] ext4 filesystem being mounted at /7/bus supports timestamps until 2038 (0x7fffffff)
[  317.589757][ T5660] EXT4-fs (loop1): mounted filesystem without journal. Opts: nodelalloc,grpid,auto_da_alloc,,errors=continue
[  317.601834][ T5660] ext4 filesystem being mounted at /0/file1 supports timestamps until 2038 (0x7fffffff)
[  317.679847][ T5666] EXT4-fs error (device loop4): ext4_ext_check_inode:500: inode #15: comm syz.4.1666: pblk 0 bad header/extent: invalid eh_entries - magic f30a, entries 24833, max 4(4), depth 0(0)
[  317.719694][ T5666] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.1666: couldn't read orphan inode 15 (err -117)
[  317.733730][ T5666] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue
[  317.743282][ T5666] ext4 filesystem being mounted at /136/file0 supports timestamps until 2038 (0x7fffffff)
[  317.789300][ T3443] usb 4-1: new high-speed USB device number 30 using dummy_hcd
[  317.868697][ T2022] hid-multitouch 0003:1FD2:6007.0024: hidraw0: USB HID v0.00 Device [HID 1fd2:6007] on usb-dummy_hcd.0-1/input0
[  318.070717][ T3443] usb 4-1: Using ep0 maxpacket: 16
[  318.124940][    T5] usb 2-1: new full-speed USB device number 36 using dummy_hcd
[  318.235593][ T3443] usb 4-1: config 0 has an invalid interface number: 2 but max is 0
[  318.243476][ T3443] usb 4-1: config 0 has no interface number 0
[  318.258942][ T3443] usb 4-1: config 0 interface 2 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0
[  318.278670][ T5654] syz.2.1664[5654] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  318.278797][ T5654] syz.2.1664[5654] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  319.062779][ T3443] usb 4-1: config 0 interface 2 altsetting 0 bulk endpoint 0xB has invalid maxpacket 0
[  319.222393][ T3443] usb 4-1: New USB device found, idVendor=0582, idProduct=0005, bcdDevice= 0.88
[  319.240125][ T3443] usb 4-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[  319.262577][ T3443] usb 4-1: Product: syz
[  319.266621][ T3443] usb 4-1: SerialNumber: syz
[  319.284277][    T5] usb 2-1: unable to get BOS descriptor or descriptor too short
[  319.299450][ T3443] usb 4-1: config 0 descriptor??
[  319.327885][    T5] usb 2-1: not running at top speed; connect to a high speed hub
[  319.425335][    T5] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  319.437067][    T5] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 1023, setting to 64
[  319.457846][ T3449] usb 1-1: USB disconnect, device number 29
[  319.620238][    T5] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  319.635639][    T5] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  319.652571][    T5] usb 2-1: Product: syz
[  319.661937][    T5] usb 2-1: Manufacturer: syz
[  319.666696][    T5] usb 2-1: SerialNumber: syz
[  319.676430][ T5699] EXT4-fs (loop0): Ignoring removed mblk_io_submit option
[  319.693175][ T5699] EXT4-fs (loop0): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  319.726913][ T5699] EXT4-fs error (device loop0): ext4_orphan_get:1391: inode #15: comm syz.0.1675: casefold flag without casefold feature
[  319.741955][ T5699] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: inode #12: comm syz.0.1675: missing EA_INODE flag
[  319.754683][ T5699] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.1675: error while reading EA inode 12 err=-117
[  319.770218][ T5699] EXT4-fs (loop0): 1 orphan inode deleted
[  319.778769][ T5699] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_nolock,journal_dev=0x0000000000000007,quota,mblk_io_submit,errors=continue,errors=continue,data_err=ignore,delalloc,jqfmt=vfsold,norecovery,errors=continue,journal_ioprio=0x0000000000000001,,errors=continue
[  319.930042][ T5707] EXT4-fs error (device loop0): ext4_ext_check_inode:500: inode #15: comm syz.0.1678: pblk 0 bad header/extent: invalid eh_entries - magic f30a, entries 24833, max 4(4), depth 0(0)
[  319.963175][ T5707] EXT4-fs error (device loop0): ext4_orphan_get:1396: comm syz.0.1678: couldn't read orphan inode 15 (err -117)
[  319.976314][ T5707] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
[  319.988691][ T5707] ext4 filesystem being mounted at /9/file0 supports timestamps until 2038 (0x7fffffff)
[  319.989104][    T5] cdc_ncm 2-1:1.0: bind() failure
[  320.005946][    T5] cdc_ncm 2-1:1.1: bind() failure
[  320.013458][    T5] usb 2-1: USB disconnect, device number 36
[  320.324546][ T5720] FAT-fs (loop0): Directory bread(block 64) failed
[  320.330960][ T5720] FAT-fs (loop0): Directory bread(block 65) failed
[  320.351681][ T5720] FAT-fs (loop0): Directory bread(block 66) failed
[  320.361967][ T5720] FAT-fs (loop0): Directory bread(block 67) failed
[  320.378011][ T5720] FAT-fs (loop0): Directory bread(block 68) failed
[  320.405731][ T5720] FAT-fs (loop0): Directory bread(block 69) failed
[  320.425407][ T5720] FAT-fs (loop0): Directory bread(block 70) failed
[  320.440736][ T5720] FAT-fs (loop0): Directory bread(block 71) failed
[  320.455640][ T5720] FAT-fs (loop0): Directory bread(block 72) failed
[  320.469256][ T5720] FAT-fs (loop0): Directory bread(block 73) failed
[  320.506453][ T5715] syz.2.1681[5715] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  320.506612][ T5715] syz.2.1681[5715] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  429.143261][    C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[  429.161450][    C0] 	(detected by 0, t=10002 jiffies, g=43021, q=742)
[  429.167869][    C0] rcu: All QSes seen, last rcu_preempt kthread activity 10002 (4294978106-4294968104), jiffies_till_next_fqs=1, root ->qsmask 0x0
[  429.181088][    C0] rcu: rcu_preempt kthread starved for 10002 jiffies! g43021 f0x2 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1
[  429.192077][    C0] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[  429.201882][    C0] rcu: RCU grace-period kthread stack dump:
[  429.207607][    C0] task:rcu_preempt     state:R  running task     stack:    0 pid:   13 ppid:     2 flags:0x00004000
[  429.218193][    C0] Call Trace:
[  429.221338][    C0]  __schedule+0xbe6/0x1330
[  429.225601][    C0]  ? release_firmware_map_entry+0x192/0x192
[  429.231321][    C0]  ? _raw_spin_lock_irqsave+0xf9/0x210
[  429.236617][    C0]  ? _raw_spin_lock+0x1b0/0x1b0
[  429.241320][    C0]  ? _raw_spin_lock_irq+0xa5/0x1b0
[  429.246446][    C0]  schedule+0x13d/0x1d0
[  429.250426][    C0]  schedule_timeout+0x18c/0x360
[  429.255106][    C0]  ? prepare_to_swait_event+0x39f/0x3e0
[  429.260481][    C0]  ? console_conditional_schedule+0x10/0x10
[  429.266216][    C0]  ? run_local_timers+0x160/0x160
[  429.271085][    C0]  ? __note_gp_changes+0x2d8/0x6f0
[  429.276040][    C0]  rcu_gp_kthread+0xefc/0x23a0
[  429.280626][    C0]  ? dump_blkd_tasks+0x7e0/0x7e0
[  429.285397][    C0]  ? rcu_barrier_callback+0x50/0x50
[  429.290429][    C0]  ? _raw_spin_lock+0x1b0/0x1b0
[  429.295147][    C0]  ? __kasan_check_read+0x11/0x20
[  429.299975][    C0]  ? __kthread_parkme+0xb9/0x1c0
[  429.304911][    C0]  kthread+0x34b/0x3d0
[  429.308771][    C0]  ? rcu_barrier_callback+0x50/0x50
[  429.313832][    C0]  ? kthread_blkcg+0xd0/0xd0
[  429.318241][    C0]  ret_from_fork+0x1f/0x30
[  559.219481][    C0] watchdog: BUG: soft lockup - CPU#0 stuck for 111s! [syz.4.1687:5730]
[  559.227552][    C0] Modules linked in:
[  559.231295][    C0] CPU: 0 PID: 5730 Comm: syz.4.1687 Not tainted 5.10.218-syzkaller-00638-g3feee789f446 #0
[  559.241159][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  559.251048][    C0] RIP: 0010:smp_call_function_single+0x278/0x510
[  559.257210][    C0] Code: 0f 85 18 02 00 00 44 8b 6c 24 48 44 89 ee 83 e6 01 31 ff e8 7a f0 0a 00 41 83 e5 01 75 0a e8 bf ec 0a 00 e9 eb 00 00 00 f3 90 <42> 0f b6 04 23 84 c0 75 15 f7 44 24 48 01 00 00 00 0f 84 cd 00 00
[  559.277457][    C0] RSP: 0018:ffffc90000c17b60 EFLAGS: 00000293
[  559.283445][    C0] RAX: ffffffff815fbde4 RBX: 1ffff92000182f75 RCX: ffff88810d56bb40
[  559.291678][    C0] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[  559.299509][    C0] RBP: ffffc90000c17c50 R08: ffffffff815fbdb6 R09: ffffed103ee2aec9
[  559.307301][    C0] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000
[  559.315121][    C0] R13: 0000000000000001 R14: ffffc90000c17ba8 R15: 0000000000000000
[  559.322927][    C0] FS:  0000555556191500(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[  559.331691][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  559.338151][    C0] CR2: 00007f7b28d556b8 CR3: 0000000120c78000 CR4: 00000000003506b0
[  559.346022][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  559.353847][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  559.361626][    C0] Call Trace:
[  559.364842][    C0]  <IRQ>
[  559.367547][    C0]  ? show_regs+0x58/0x60
[  559.371628][    C0]  ? watchdog_timer_fn+0x471/0x590
[  559.376577][    C0]  ? proc_watchdog_cpumask+0xd0/0xd0
[  559.381693][    C0]  ? __hrtimer_run_queues+0x3d7/0xa50
[  559.386911][    C0]  ? hrtimer_interrupt+0x8b0/0x8b0
[  559.391851][    C0]  ? clockevents_program_event+0x214/0x2c0
[  559.397680][    C0]  ? ktime_get_update_offsets_now+0x266/0x280
[  559.403755][    C0]  ? hrtimer_interrupt+0x39a/0x8b0
[  559.408713][    C0]  ? __sysvec_apic_timer_interrupt+0xfd/0x3c0
[  559.414710][    C0]  ? asm_call_irq_on_stack+0xf/0x20
[  559.419707][    C0]  </IRQ>
[  559.422493][    C0]  ? sysvec_apic_timer_interrupt+0x85/0xe0
[  559.428178][    C0]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[  559.434413][    C0]  ? smp_call_function_single+0x266/0x510
[  559.439955][    C0]  ? smp_call_function_single+0x294/0x510
[  559.445522][    C0]  ? smp_call_function_single+0x278/0x510
[  559.451092][    C0]  ? rcu_barrier+0x400/0x400
[  559.455493][    C0]  ? flush_smp_call_function_from_idle+0x1b0/0x1b0
[  559.461924][    C0]  ? rcu_barrier+0x400/0x400
[  559.466472][    C0]  ? mutex_trylock+0xa0/0xa0
[  559.470909][    C0]  ? find_next_bit+0x7f/0x100
[  559.475505][    C0]  rcu_barrier+0x218/0x400
[  559.479752][    C0]  netdev_run_todo+0x157/0xdc0
[  559.484358][    C0]  ? kvfree+0x35/0x40
[  559.488168][    C0]  ? kfree+0xc3/0x270
[  559.491992][    C0]  ? netdev_state_change+0xa3/0x250
[  559.497025][    C0]  ? netdev_refcnt_read+0x1e0/0x1e0
[  559.502148][    C0]  ? __tun_detach+0x11d4/0x1510
[  559.506827][    C0]  ? mutex_trylock+0xa0/0xa0
[  559.511263][    C0]  rtnl_unlock+0xe/0x10
[  559.515436][    C0]  tun_chr_close+0xc4/0x140
[  559.519880][    C0]  ? tun_chr_open+0x530/0x530
[  559.524374][    C0]  __fput+0x309/0x760
[  559.528200][    C0]  ____fput+0x15/0x20
[  559.532029][    C0]  task_work_run+0x129/0x190
[  559.536441][    C0]  exit_to_user_mode_loop+0xbf/0xd0
[  559.541477][    C0]  syscall_exit_to_user_mode+0xa2/0x1a0
[  559.546854][    C0]  do_syscall_64+0x40/0x70
[  559.551287][    C0]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  559.557104][    C0] RIP: 0033:0x7f0893b13bd9
[  559.561360][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  559.580793][    C0] RSP: 002b:00007fffb97336c8 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  559.589123][    C0] RAX: 0000000000000000 RBX: 000000000004b652 RCX: 00007f0893b13bd9
[  559.596949][    C0] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[  559.604832][    C0] RBP: ffffffffffffffff R08: 0000000000000001 R09: 0000000bb97339ef
[  559.612817][    C0] R10: 00007f089399e000 R11: 0000000000000246 R12: 00007f0893ca1f6c
[  559.620645][    C0] R13: 0000000000000032 R14: 00007f0893ca3a60 R15: 00007f0893ca1f60
[  559.628461][    C0] Sending NMI from CPU 0 to CPUs 1:
[  559.636484][    C0] NMI backtrace for cpu 1
[  559.636511][    C0] CPU: 1 PID: 5733 Comm: syz.1.1688 Not tainted 5.10.218-syzkaller-00638-g3feee789f446 #0
[  559.636536][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  559.636547][    C0] RIP: 0010:kvm_wait+0xec/0x150
[  559.636577][    C0] Code: 03 42 0f b6 04 20 84 c0 75 6a 41 0f b6 45 00 44 38 f0 75 26 41 f7 c7 00 02 00 00 75 0f 0f 1f 44 00 00 0f 00 2d 95 52 d5 03 f4 <eb> 0e 0f 1f 44 00 00 0f 00 2d 86 52 d5 03 fb f4 4c 89 7c 24 18 ff
[  559.636588][    C0] RSP: 0000:ffffc90001766ec0 EFLAGS: 00000046
[  559.636606][    C0] RAX: 0000000000000003 RBX: 1ffff920002ecddc RCX: ffffffff8150b5a4
[  559.636619][    C0] RDX: 0000000000000001 RSI: 0000000000000003 RDI: ffffc90001766f00
[  559.636633][    C0] RBP: ffffc90001766f70 R08: dffffc0000000000 R09: ffffed1021f52461
[  559.636646][    C0] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000
[  559.636660][    C0] R13: ffff88810fa92300 R14: 0000000000000003 R15: 0000000000000046
[  559.636674][    C0] FS:  00007f21e85026c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[  559.636686][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  559.636699][    C0] CR2: ffffffffdfa50000 CR3: 000000010e57a000 CR4: 00000000003506a0
[  559.636713][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  559.636726][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  559.636733][    C0] Call Trace:
[  559.636739][    C0]  <NMI>
[  559.636747][    C0]  ? show_regs+0x58/0x60
[  559.636756][    C0]  ? nmi_cpu_backtrace+0x133/0x160
[  559.636764][    C0]  ? kvm_wait+0xec/0x150
[  559.636774][    C0]  ? nmi_cpu_backtrace_handler+0xc/0x20
[  559.636783][    C0]  ? nmi_handle+0xa8/0x280
[  559.636791][    C0]  ? kvm_wait+0xec/0x150
[  559.636800][    C0]  ? default_do_nmi+0x69/0x160
[  559.636808][    C0]  ? exc_nmi+0xad/0x100
[  559.636817][    C0]  ? end_repeat_nmi+0x16/0x31
[  559.636827][    C0]  ? __pv_queued_spin_lock_slowpath+0x6d4/0xc70
[  559.636835][    C0]  ? kvm_wait+0xec/0x150
[  559.636843][    C0]  ? kvm_wait+0xec/0x150
[  559.636851][    C0]  ? kvm_wait+0xec/0x150
[  559.636857][    C0]  </NMI>
[  559.636867][    C0]  ? _raw_spin_unlock+0x4d/0x70
[  559.636876][    C0]  ? kvm_arch_para_hints+0x30/0x30
[  559.636887][    C0]  __pv_queued_spin_lock_slowpath+0x72f/0xc70
[  559.636898][    C0]  ? __pv_queued_spin_unlock_slowpath+0x280/0x280
[  559.636909][    C0]  _raw_spin_lock_irqsave+0x1a0/0x210
[  559.636919][    C0]  ? _raw_spin_lock+0x1b0/0x1b0
[  559.636929][    C0]  ? 0xffffffffa0018254
[  559.636938][    C0]  ? is_bpf_text_address+0x172/0x190
[  559.636948][    C0]  ? stack_trace_save+0x1c0/0x1c0
[  559.636957][    C0]  ? __kernel_text_address+0x9b/0x110
[  559.636967][    C0]  force_sig_info_to_task+0x67/0x320
[  559.636975][    C0]  ? bsearch+0x96/0xc0
[  559.636984][    C0]  force_sig_fault+0x125/0x1c0
[  559.636994][    C0]  ? force_sig_fault_to_task+0x1c0/0x1c0
[  559.637003][    C0]  ? ex_handler_uaccess+0x3e/0xc0
[  559.637013][    C0]  ? ex_handler_fprestore+0xf0/0xf0
[  559.637022][    C0]  ? fixup_exception+0x94/0xd0
[  559.637031][    C0]  no_context+0x2e1/0xf20
[  559.637040][    C0]  ? is_bpf_text_address+0x172/0x190
[  559.637050][    C0]  ? __kernel_text_address+0x9b/0x110
[  559.637064][    C0]  ? is_prefetch+0x5c0/0x5c0
[  559.637073][    C0]  ? arch_stack_walk+0xf3/0x140
[  559.637082][    C0]  __bad_area_nosemaphore+0xcd/0x440
[  559.637092][    C0]  ? stack_trace_snprint+0xf0/0xf0
[  559.637101][    C0]  bad_area_nosemaphore+0x2d/0x40
[  559.637110][    C0]  do_kern_addr_fault+0x69/0x80
[  559.637119][    C0]  exc_page_fault+0x399/0x5b0
[  559.637128][    C0]  asm_exc_page_fault+0x1e/0x30
[  559.637139][    C0] RIP: 0010:strncpy_from_kernel_nofault+0x1c2/0x1e0
[  559.637168][    C0] Code: c1 7c 9c 48 8b 7d c8 e8 9c 9c 17 00 48 8b 75 c8 48 8b 55 d0 eb 89 89 f9 80 e1 07 38 c1 7c 96 e8 e4 9c 17 00 48 8b 55 d0 eb 8b <e8> e9 08 da ff 48 c7 c3 f2 ff ff ff e9 45 ff ff ff 66 2e 0f 1f 84
[  559.637179][    C0] RSP: 0000:ffffc90001767608 EFLAGS: 00010046
[  559.637198][    C0] RAX: 0000000000000000 RBX: ffffffffdfa50000 RCX: ffff88810f28a780
[  559.637211][    C0] RDX: ffffc900017676a8 RSI: ffffffffdfa50000 RDI: ffffffffdfa50000
[  559.637225][    C0] RBP: ffffc90001767650 R08: ffffffff81331f42 R09: ffffed1021e514f1
[  559.637238][    C0] R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000000
[  559.637252][    C0] R13: ffffffffdfa50000 R14: dffffc0000000000 R15: 0000000000000008
[  559.637263][    C0]  ? copy_from_kernel_nofault_allowed+0x92/0xd0
[  559.637273][    C0]  ? strncpy_from_kernel_nofault+0x41/0x1e0
[  559.637284][    C0]  bpf_probe_read_compat_str+0x112/0x180
[  559.637294][    C0]  bpf_prog_3b9dd6b9ec8089c9+0x3f/0x3b0
[  559.637303][    C0]  bpf_trace_run5+0x176/0x320
[  559.637312][    C0]  ? bpf_trace_run4+0x2e0/0x2e0
[  559.637322][    C0]  ? slab_post_alloc_hook+0x80/0x2f0
[  559.637332][    C0]  __bpf_trace_signal_generate+0x3c/0x50
[  559.637342][    C0]  ? perf_trace_signal_deliver+0x5e0/0x5e0
[  559.637353][    C0]  __traceiter_signal_generate+0x8e/0xe0
[  559.637362][    C0]  __send_signal+0xb39/0xb90
[  559.637370][    C0]  send_signal+0x4c1/0x5e0
[  559.637380][    C0]  force_sig_info_to_task+0x272/0x320
[  559.637389][    C0]  force_sig_fault+0x125/0x1c0
[  559.637399][    C0]  ? force_sig_fault_to_task+0x1c0/0x1c0
[  559.637409][    C0]  ? ex_handler_uaccess+0x3e/0xc0
[  559.637418][    C0]  ? ex_handler_fprestore+0xf0/0xf0
[  559.637427][    C0]  ? fixup_exception+0x94/0xd0
[  559.637435][    C0]  no_context+0x2e1/0xf20
[  559.637445][    C0]  ? __kasan_check_write+0x14/0x20
[  559.637454][    C0]  ? is_prefetch+0x5c0/0x5c0
[  559.637463][    C0]  ? set_current_blocked+0x40/0x40
[  559.637472][    C0]  ? dequeue_signal+0x22f/0x520
[  559.637481][    C0]  ? _raw_spin_lock_irq+0xa5/0x1b0
[  559.637490][    C0]  ? unhandled_signal+0x150/0x150
[  559.637500][    C0]  __bad_area_nosemaphore+0xcd/0x440
[  559.637508][    C0]  bad_area+0x69/0x80
[  559.637516][    C0]  exc_page_fault+0x439/0x5b0
[  559.637526][    C0]  asm_exc_page_fault+0x1e/0x30
[  559.637536][    C0] RIP: 0010:__put_user_nocheck_8+0x11/0x21
[  559.637565][    C0] Code: 0f 01 ca c3 66 0f 1f 44 00 00 48 bb f9 ef ff ff ff 7f 00 00 48 39 d9 73 14 0f 01 cb 48 89 01 31 c9 0f 01 ca c3 0f 1f 44 00 00 <0f> 01 ca b9 f2 ff ff ff c3 cc cc cc cc cc cc cc 55 48 89 e5 41 57
[  559.637575][    C0] RSP: 0000:ffffc90001767d98 EFLAGS: 00050283
[  559.637593][    C0] RAX: 000000007735948d RBX: 00007fffffffeff9 RCX: 0000000000000019
[  559.637607][    C0] RDX: ffffc9000132a000 RSI: 0000000000000113 RDI: 0000000000000114
[  559.637620][    C0] RBP: ffffc90001767e48 R08: ffffffff815b60b4 R09: ffffc90001767de0
[  559.637634][    C0] R10: 0000000000000000 R11: dffffc0000000001 R12: ffffc90001767de0
[  559.637647][    C0] R13: dffffc0000000000 R14: 1ffff920002ecfb8 R15: 0000000000000019
[  559.637657][    C0]  ? ktime_get_real_ts64+0x1f4/0x2e0
[  559.637667][    C0]  ? __x64_sys_gettimeofday+0xf9/0x240
[  559.637677][    C0]  ? __ia32_sys_stime32+0x160/0x160
[  559.637686][    C0]  ? __kasan_check_read+0x11/0x20
[  559.637695][    C0]  emulate_vsyscall+0xe33/0x13d0
[  559.637703][    C0]  exc_page_fault+0x147/0x5b0
[  559.637712][    C0]  ? asm_exc_page_fault+0x8/0x30
[  559.637721][    C0]  asm_exc_page_fault+0x1e/0x30
[  559.637730][    C0] RIP: 0033:_end+0x783da000/0x0
[  559.637743][    C0] Code: Unable to access opcode bytes at RIP 0xffffffffff5fffd6.
[  559.637754][    C0] RSP: 002b:00007f21e8501ab8 EFLAGS: 00010246
[  559.637772][    C0] RAX: ffffffffffffffda RBX: 00007f21e940ef60 RCX: 00007f21e9280bd9
[  559.637784][    C0] RDX: 00007f21e8501ac0 RSI: 00007f21e8501bf0 RDI: 0000000000000019
[  559.637798][    C0] RBP: 00007f21e92efe60 R08: 0000000000000000 R09: 0000000000000000
[  559.637811][    C0] R10: 0000000000000007 R11: 0000000000000246 R12: 0000000000000000
[  559.637825][    C0] R13: 000000000000000b R14: 00007f21e940ef60 R15: 00007ffd277b63a8